@lamoda/seller-ui-kit

MAL-2026-2588

npmmalware4/10/2026

Description

Malicious code in @lamoda/seller-ui-kit (npm)

Indicators of Compromise

SHA256 Hashes (1)

31d90cac4d737390d4269e9bd27e28386ffd9cb0ffac08fb6526c8f2413ac725

References (2)

https://github.com/advisories/GHSA-hcfw-75mq-x3wrOSV https://app.safedep.io/community/malysis/01KNVMV0FTFDM2MPEP5S1E9A4AOSV

Details

Ecosystemnpm

Attack Typemalware

Published4/10/2026

Affected Versions

0

Aliases

GHSA-hcfw-75mq-x3wr

Quick Actions

All Incidents npm Incidents

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001