onewin-landing

MAL-2026-2652

npmmalware4/14/2026
Description

Malicious code in onewin-landing (npm)

Indicators of Compromise
SHA256 Hashes (2)
af836df2faf0017725ed9fdbcd5457bfca0045b6a8d9cbad8e1ca949f4f06938
2ca8df32d685e891dbfe57504fff8034c293c7ac7892f4f51a8ee93faaf4804d
References (1)
https://github.com/advisories/GHSA-6xf2-88r3-x5grOSV
Details
Ecosystemnpm
Attack Typemalware
Published4/14/2026
Affected Versions
0
Aliases
GHSA-6xf2-88r3-x5gr
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001