@browserbasehq/mcp

MAL-2025-191195

npmmalware11/25/2025
Description

Malicious code in @browserbasehq/mcp (npm)

Indicators of Compromise
SHA256 Hashes (4)
1a7dedbf46e6f9183f9907b94cd0f82a717f5066f630fc531aea864173d9b262
139a88485eddbca8b8f0775b28beb2bc230477fefa988c1b0942bdfef35f359c
dd1d0d39e38fcabc19d825aaf056705056728c59701b5fe8cdf5863839a072b3
6f73066ccc2a22a7119088e539a103711c7d231cbe9f9f956c5a8234de36114a
Details
Ecosystemnpm
Attack Typemalware
Published11/25/2025
Aliases
GHSA-j9hg-hmwf-9qx7
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001