@everreal/validate-esmoduleinterop-imports

MAL-2025-191216

npmmalware11/24/2025
Description

Malicious code in @everreal/validate-esmoduleinterop-imports (npm)

Indicators of Compromise
SHA256 Hashes (4)
19b66a83131d2a96b0a125da4513334f08d1b2149f048c2ea5de13e225bdfd25
70d6698d2ca5930dd43c46c56df79fbb54ff103af79c144f852586d11ed66fe5
0937ec89b2f415695a49aadd01e4560297a804f5c7598e613d516516babbb9d5
dab8b8345156c4c77c99622cb83f321f5904503094e6d54a19585d087a7849a6
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-v335-px5m-mp9p
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001