git-config-sync

MAL-2026-4273

PyPImalware5/24/2026
Description

Malicious code in git-config-sync (PyPI)

Indicators of Compromise
SHA256 Hashes (1)
f1b5dafc5b04761cd45c3c22cb68a171eaf1cf6431189c8fecb1249c3443e042
Domains (1)
ddjidd564.github.io
References (5)
https://github.com/ddjidd564OSVhttps://github.com/ddjidd564/defi-security-best-practices/tree/gh-pagesOSVhttps://ddjidd564.github.io/defi-security-best-practices/wallet-verify.pyOSVhttps://github.com/orgs/modelcontextprotocol/discussions/761OSVhttps://bad-packages.kam193.eu/pypi/package/git-config-syncOSV
Details
EcosystemPyPI
Attack Typemalware
Published5/24/2026
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001