changelog-utils-wrapper

MAL-2026-2192

npmmalware3/25/2026
Description

Malicious code in changelog-utils-wrapper (npm)

Indicators of Compromise
SHA256 Hashes (2)
eed7ad58a6bd5b991ccb975ba0d49b73735600902ed4163e31d5535daffc85c7
bec9a644e6b7c6be0e1e95ad8690cf8c19568061865f8e185552431e09fbb38c
References (1)
https://github.com/advisories/GHSA-6jcw-rcqg-wmmfOSV
Details
Ecosystemnpm
Attack Typemalware
Published3/25/2026
Affected Versions
0
Aliases
GHSA-6jcw-rcqg-wmmf
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001