dotjsenv

MAL-2025-192755

npmmalware12/23/2025

Description

Malicious code in dotjsenv (npm)

Indicators of Compromise

SHA256 Hashes (3)

b4dd239728dde802ec7a7aadd85d2a9f1c5c3e8b83e5f19b92a2afab16d1cd1c

199e0e242516cf235f3d4f4d7b7921f7b52573e674bd76da515939782a81c153

713eaa1e2dee9ccb6d95848f0bef3112002a8f4f084066fe537f97154317f9c4

References (1)

Details

Ecosystemnpm

Attack Typemalware

Published12/23/2025

Affected Versions

Aliases

GHSA-63qm-964q-w2w5

Quick Actions

Ready for Agentic Automated Testing?