sparkling-router

MAL-2026-311

npmmalware1/16/2026
Description

Malicious code in sparkling-router (npm)

Indicators of Compromise
SHA256 Hashes (3)
22829b6f6507a82b0a8acae51ea2b4cc5034afde231740f3eaede5e0af3a0fac
6e84c7e51a68544e8af8935aa539926a2bc3d269e42c78c99a3765e76c54770f
2a1c87232c031e53b3e4b944f5094331bf833cad71d25e4fb1cc411e09cf1ade
References (1)
https://github.com/advisories/GHSA-rcjf-9p8h-7q5wOSV
Details
Ecosystemnpm
Attack Typemalware
Published1/16/2026
Affected Versions
0
Aliases
GHSA-rcjf-9p8h-7q5w
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001