@spx-smartsorting/vue

MAL-2026-262

npmmalware1/16/2026
Description

Malicious code in @spx-smartsorting/vue (npm)

Indicators of Compromise
SHA256 Hashes (3)
1c0f383e5f85168809feb97c29b3dfbd12d807bcf0de67ae579f0dcc606889cc
b273a77ed46935ae438b1a771aa85d94e315e7c648f6f666ea4b9f24b8e25824
3c326546070460164b0865b992e5765159845c46652b0a31e8efb5132373991c
References (1)
https://github.com/advisories/GHSA-wc42-f5gw-656wOSV
Details
Ecosystemnpm
Attack Typemalware
Published1/16/2026
Affected Versions
0
Aliases
GHSA-wc42-f5gw-656w
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001