sd-pay

MAL-2025-192562

npmmalware12/12/2025
Description

Malicious code in sd-pay (npm)

Indicators of Compromise
SHA256 Hashes (4)
a8a08228b2c2618675e777b8bd306f5499f39767b26a7e12deb1dc0ce91175b5
9616f3280e84767be7a4d7eb72057a907816c66dba6104915b31df22260c16f4
42687e9db26ef26b11c736ef5157a44f579518dffbf5c68f6c347537194a90c2
8efe021ab6904ea60c19a9e86c5420cf244bf9768e1c5189ce69ee762a1e3743
Details
Ecosystemnpm
Attack Typemalware
Published12/12/2025
Aliases
GHSA-ff56-h5vh-jf27SNYK-JS-SDPAY-14400621
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001