js-nodecat

MAL-2026-1116

npmmalware3/2/2026
Description

Malicious code in js-nodecat (npm)

Indicators of Compromise
SHA256 Hashes (4)
1f19647e158d2037b4d4d79e931211560b4b7c72e33defc94f8c4552775f601b
38c204576b5f5aefba60246b88360a50e23f958c2023883088bdf6a151ccb7d9
112222e8c04c33fcf0ec84f15a5fcb4e1a05fdfe0ebed974084a9012396d11c4
51186f0e278592c64bf71d9291884a5013c5ea66a2985ebf96aa08bd3f21efce
References (1)
https://github.com/advisories/GHSA-m3qj-483q-v65mOSV
Details
Ecosystemnpm
Attack Typemalware
Published3/2/2026
Affected Versions
0
Aliases
GHSA-m3qj-483q-v65m
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001