@voiceflow/tsconfig-paths

MAL-2025-191380

npmmalware11/25/2025
Description

Malicious code in @voiceflow/tsconfig-paths (npm)

Indicators of Compromise
SHA256 Hashes (2)
4ae8285bace1b7f225c4c810422a0fdb90c0d9cc9ee378e19a1ecce545343c10
6fb7c02b11afed895db4edc03c6318bb09005f30253dcea72d4d1b0876478212
Details
Ecosystemnpm
Attack Typemalware
Published11/25/2025
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001