@alexcolls/nuxt-socket.io

MAL-2025-191185

npmmalware11/25/2025
Description

Malicious code in @alexcolls/nuxt-socket.io (npm)

Indicators of Compromise
SHA256 Hashes (3)
f5926d1c7228dbdc3c91f5f7c192f742997284e9e8276ae713748d14a9e0de9c
39e79cb62aefe23649f418c21167f8eb9459f2205a9f135905fa2a23761a4fdd
2dee0cebdac319dea5d5f8c78c0d15431297789499f8e486729175fffb7c4f91
Details
Ecosystemnpm
Attack Typemalware
Published11/25/2025
Aliases
GHSA-q564-hpqp-4cmg
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001