dotenv-intend

MAL-2025-192290

npmmalware12/3/2025
Description

Malicious code in dotenv-intend (npm)

Indicators of Compromise
SHA256 Hashes (4)
64a31dce3bccc8134695abbe65011f655e810a0a28726ce2d60668e3689ab605
2b29ae1386b4f6a14de72979eae00fc96b33b8a080975db5c8eb8917d23fdeff
b25be4f8fc2ec1c808f4438bd74cdff51b2582f4f2c0711bd04f0e86fd60bc40
459cd3ebefaf4d5d4da6c788cdd77a0640f7b447fb07d4ec2ff96e9df99e75d3
Details
Ecosystemnpm
Attack Typemalware
Published12/3/2025
Aliases
GHSA-623w-pf6v-gcgvSNYK-JS-DOTENVINTEND-14152253
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001