@vleo-dev/a11y-js-service

MAL-2025-191459

npmmalware11/25/2025
Description

Malicious code in @vleo-dev/a11y-js-service (npm)

Indicators of Compromise
SHA256 Hashes (2)
5313fcab4fbcfa7eee81b5b49ac2050973c826c921fda53ce9c2c67352b7a182
bf7b4a5742b82956cf1632de9f435f824ac60651023bec86e0f12d9689dc5b2c
Details
Ecosystemnpm
Attack Typemalware
Published11/25/2025
Aliases
GHSA-487m-gw8w-94hc
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001