@signify/vue-components

MAL-2026-45

npmmalware1/5/2026
Description

Malicious code in @signify/vue-components (npm)

Indicators of Compromise
SHA256 Hashes (2)
fe7a7fdd46933fb2a4f34e5eb5001be95173930487c3aed6c35c53c6c2b17d24
2ff7ae41abedc64bde81c60772d7adf7e58c51a651ce76e0684c0ea713fe130d
References (1)
https://github.com/advisories/GHSA-j8hr-3qpv-xqf3OSV
Details
Ecosystemnpm
Attack Typemalware
Published1/5/2026
Affected Versions
0
Aliases
GHSA-j8hr-3qpv-xqf3
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001