jquery-bindings
MAL-2025-191113
npmmalware11/24/2025
Description
Malicious code in jquery-bindings (npm)
Indicators of Compromise
SHA256 Hashes (3)
eb6c4671167bd91b31b632f661a4bc8a3d627412796b9899fae3d0797eb51e3e
c14020bf5b7c180d86872a4f1dcdd16891032d7d58e0792a77c02668d0750fdc
31127dd6191c9d3e68e94d705b43d24066f06f37b41f659a5a6831a8a811fc11
References (4)
https://github.com/advisories/GHSA-hp23-35fw-9g8jOSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-hp23-35fw-9g8j
Quick Actions