moonbit-metrics-validator

MAL-2026-2946

PyPImalware4/20/2026

Description

Malicious code in moonbit-metrics-validator (PyPI)

Indicators of Compromise

SHA256 Hashes (2)

e6bb44c25db578131ec69b1c961c22f67cabb0b81aae5fe9d4620194bf8d83cc

76ebf99852d91f4d88a4f717b1aa730f494cb45a9b50308a1c2a1734137bedb8

References (3)

https://github.com/zongen01/wechat-editor-studio/pull/2/changes#diff-d9555f91ec2cf16d2b3d23115fe3cf6600fa8b42627de82a81da48191c54d99cOSV https://bad-packages.kam193.eu/pypi/package/moonbit-metrics-validatorOSV https://github.com/DiamondFrontline/wechat-editor-studio/commit/3c61484843fbc7fbeb5e81149296aa7843570ee1OSV

Details

EcosystemPyPI

Attack Typemalware

Published4/20/2026

Quick Actions

All Incidents PyPI Incidents

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001