chai-sync

MAL-2025-191567

npmmalware12/1/2025
Description

Malicious code in chai-sync (npm)

Indicators of Compromise
SHA256 Hashes (5)
dd2e623fc4ef1feee3582c3bba6c89f9923339cf86f383cef500439b31713a56
f58d95adcd5fd2dce29ac379c47d6b4ca7239ae5d1eb53d06617067cc7623938
ec1194f0b43e545cc35705383e2f3195132acdb7f0117f54a814eac3f7e446fa
e306fab58c6a3b7ea982a5c069d4799a198fc2d9a9ecb81b47e9ac7b4253596f
fa02c1dd84e38e3cf7de19ecd9c59205baebc39bd1c9aabf12c356cc3e336465
Details
Ecosystemnpm
Attack Typemalware
Published12/1/2025
Aliases
SNYK-JS-CHAISYNC-14152246
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001