@mailpoet/component

MAL-2026-454

npmmalware1/22/2026
Description

Malicious code in @mailpoet/component (npm)

Indicators of Compromise
SHA256 Hashes (2)
722363f2cd77cc9a95e578682cfd0a66545fb8405716cd0cf6719b8e0ac9f179
d48b40574c65ef747944583fa5a49ac40b673d6932a02247c2cdbd5331a79179
References (1)
https://github.com/advisories/GHSA-h25f-8r9p-7452OSV
Details
Ecosystemnpm
Attack Typemalware
Published1/22/2026
Affected Versions
0
Aliases
GHSA-h25f-8r9p-7452
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001