@emilgroup/auth-sdk

MAL-2026-2036

npmbackdoor3/22/2026

Description

Malicious code in @emilgroup/auth-sdk (npm)

Indicators of Compromise

SHA256 Hashes (3)

f9a3a4d6b2818fa816c3dbbbb83ea0c21099f6d388b0c1848f5a322f5f902ed8

0b1a3b316a5288730ac37792c1fa0b0b17961a04a06250cb2c9a4d36acb3e117

d5715cb3d46a30117aa377c81eb3bb8e695aa2aaf8d284dcde2b5292678452ac

Domains (1)

litellm.cloud

References (4)

Details

Ecosystemnpm

Attack Typebackdoor

Published3/22/2026

Affected Versions

1.25.10

Aliases

GHSA-gj2w-92fr-m7c2

Quick Actions

Ready for Agentic Automated Testing?