yelp-mobile-site-common

MAL-2026-2123

npmmalware3/24/2026
Description

Malicious code in yelp-mobile-site-common (npm)

Indicators of Compromise
SHA256 Hashes (3)
3bf2f306b84f7eb14895a384ef60bd0003460991e0e370d53caf4c3dee84fe24
4835ee689e587095e6348a5d06996fd0f08f011fdb49b349cc8951517dbc29e8
4ad1d645e8b5f71c1d74bd3c213319d6674345796d462ed0e53a87c084f07a84
References (1)
https://github.com/advisories/GHSA-xmfj-5j3f-gx7xOSV
Details
Ecosystemnpm
Attack Typemalware
Published3/24/2026
Affected Versions
0
Aliases
GHSA-xmfj-5j3f-gx7x
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001