yelp-pkg

MAL-2025-191666

PyPItyposquat10/20/2025
Description

Malicious code in yelp-pkg (PyPI)

Indicators of Compromise
SHA256 Hashes (4)
6c7a1648bff6faa98675b02278353e85594405df04fe9bbd92cf3f1151ce79e0
70b3149ccd32bf7e90a06b289e8ea3363279bbe38f6047eb5427e04a12fc11d1
fdea5ca17bb09234a292159e525a2a38ac3fd43760c6f2184aa27f563f320075
73eab611641522ed8e570f6dc66743eb01811ab883fa2aa94db61e5c7a2c79e2
References (1)
https://bad-packages.kam193.eu/pypi/package/yelp-pkgOSV
Details
EcosystemPyPI
Attack Typetyposquat
Published10/20/2025
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001