vscode-azure-mcp-server

MAL-2025-192601

npmmalware12/16/2025

Description

Malicious code in vscode-azure-mcp-server (npm)

Indicators of Compromise

SHA256 Hashes (3)

3a845389bfce8082a48b1b9b69690f3bd7928b1e682e192f8b8699c7c5845768

ee81b2442f4cf9659439b86f4d75212f59a5471403e97b4720448df2997d1561

c6bfbfb5788f05849b163dab7681e16355aaa72506a84e1563ac191ba89f8e03

References (1)

Details

Ecosystemnpm

Attack Typemalware

Published12/16/2025

Affected Versions

Aliases

GHSA-g3xg-r65r-rjp9

Quick Actions

Ready for Agentic Automated Testing?