pino-pretty-log

MAL-2026-2155

npmmalware3/25/2026
Description

Malicious code in pino-pretty-log (npm)

Indicators of Compromise
SHA256 Hashes (3)
5ddd0444ff8834bc42162fb1d88cf6d71f6044c2a636cde204484f654ce65896
a2a9c035f47cbd6beb9e2f47299a689f13823a21eaef04fd6abfa9035dcb120e
27186dcdb22e668210fcbf2b63b20e9469b2eefa80d683c5e814af7c1e7c19f3
References (1)
https://github.com/advisories/GHSA-p885-4m86-h35rOSV
Details
Ecosystemnpm
Attack Typemalware
Published3/25/2026
Affected Versions
0
Aliases
GHSA-p885-4m86-h35r
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001