@mailpoet/components

MAL-2026-455

npmmalware1/22/2026
Description

Malicious code in @mailpoet/components (npm)

Indicators of Compromise
SHA256 Hashes (2)
6d3154b94192eabf901cdf7facba0dac5f9e4988e66d2cc29b5e8cccc51a53a5
4ec1e0266ccd0888d11f208447e31b521c1d6a2d7e622b0b78d7572b5f6e8b3e
References (1)
https://github.com/advisories/GHSA-6qjh-33jg-r2wfOSV
Details
Ecosystemnpm
Attack Typemalware
Published1/22/2026
Affected Versions
0
Aliases
GHSA-6qjh-33jg-r2wf
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001