experimental-utils

MAL-2026-217

npmmalware1/12/2026
Description

Malicious code in experimental-utils (npm)

Indicators of Compromise
SHA256 Hashes (2)
18abb234fbb264eb66a096a48f3d2b2c3d1c61f311a5dfd77585f434af2a9bac
946fb0e9d7a8c7da433d27ef4005111b34c3e75f8827686d43696855315d5867
References (1)
https://github.com/advisories/GHSA-pg6r-j522-h6w7OSV
Details
Ecosystemnpm
Attack Typemalware
Published1/12/2026
Affected Versions
0
Aliases
GHSA-pg6r-j522-h6w7
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001