react-native-jam-icons
MAL-2025-191144
npmmalware11/24/2025
Description
Malicious code in react-native-jam-icons (npm)
Indicators of Compromise
SHA256 Hashes (3)
8051866b85493d15fb3cdb86151c1c037a8c911e260764b9615e76e4cf77318e
b57e89795be43b0ea6d48aa881c1bf25fe13b749e104656eea4de637b67aa96e
4651dd576f405b8b0d0fd7724638dce527ed7cec18cdfc20e4b49f5cc3f9006d
References (4)
https://github.com/advisories/GHSA-7r7f-q79m-3wxfOSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-7r7f-q79m-3wxf
Quick Actions