lint-staged-imagemin

MAL-2025-191124

npmmalware11/24/2025
Description

Malicious code in lint-staged-imagemin (npm)

Indicators of Compromise
SHA256 Hashes (3)
6053f2c33a709d5098dd42b1a8e188a75b3b82957c33c651b7894bc1bcdfea21
7cef2d955806e9496424dccedda2babaf9d59552af218de476ce37eff802bf00
f8cfbe33b97d4e3997d348c9532c834715e755ea1d28a6b30f2276209d4f45db
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-fc55-r563-7xhq
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001