js-observability

MAL-2026-289

npmmalware1/16/2026

Description

Malicious code in js-observability (npm)

Indicators of Compromise

SHA256 Hashes (2)

ec70afb236a90dfd2de166a3fe7626fc3c10526de7dffda8468c0a8eccaf964b

e73e93c1fefbabe1cd40c1fafdb7cd01b97aae241106ecee4aad599c02756da0

References (1)

Details

Ecosystemnpm

Attack Typemalware

Published1/16/2026

Affected Versions

Aliases

GHSA-3rq2-4j48-hmc8

Quick Actions

Ready for Agentic Automated Testing?