@hover-design/react

MAL-2025-191227

npmmalware11/24/2025
Description

Malicious code in @hover-design/react (npm)

Indicators of Compromise
SHA256 Hashes (3)
894dbfa4875aca8c9ba8a228a57bc2faeea385e5a799fbf2ab6ef91e60a57138
5df8a829f7050a1ab99c651ea7a080859b93dc2d805087aa96bfb9b499bc010d
50c066ac501de3af9fd156e23b5fb0317b633da301c4cf66b12f2ae8429e0970
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-fvpg-6cfc-hf7r
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001