passport-google-auth-token

MAL-2026-230

npmmalware1/12/2026

Description

Malicious code in passport-google-auth-token (npm)

Indicators of Compromise

SHA256 Hashes (2)

a7b2aa1e709b1d7e4354a16ead07f36669cbee04409921b20bc1787d5e177180

50e78391289ff7e26ec937eb7519688992d2497e503ba4ca396d2c2a23b71235

References (1)

Details

Ecosystemnpm

Attack Typemalware

Published1/12/2026

Affected Versions

Aliases

GHSA-cj6c-5gcc-8xr5

Quick Actions

Ready for Agentic Automated Testing?