revenuecat

MAL-2025-191418

npmmalware11/24/2025
Description

Malicious code in revenuecat (npm)

Indicators of Compromise
SHA256 Hashes (3)
cd00cb95ec8aa9b3373f787eed125fccb7121a17b064ebdd922f303c22c32b39
ef3e36bfc07bd3c7c776ac84129b8838cd409b0c4f0c0851d5615bbaf36ab797
481d03098b9cf6dff3275105a5ca196ad47829ad3ead717057f00365a619c77d
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-97v4-65xr-37cr
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001