get-deps-path

MAL-2026-4571

npmbackdoor5/20/2026
Description

Malicious code in get-deps-path (npm)

Indicators of Compromise
SHA256 Hashes (6)
57d7034a7cf96adf40cb8b52911c95780c306be35579daba6fbe4db3de899656
5ab2c326ced4705bede2d4e85b568c67cc6ca100ead58607e401c308a938e81c
65fa6f34a831aa832f9d88019ce3d0f4011701df6ab0667bd263645208c978ce
75850fa2822778f4e27ae92d867c3d4e08b0513a98a2b610bd3fc22120c946bc
a841cff65b6dbc9c997010a677b1c825eb7440504407b9eca13ebbf0ba0eb498
e9ca6350d9d7333424e442b038b6f0827180c3e495858608262d89ab82c8459e
References (6)
https://www.npmjs.com/package/get-deps-path/v/2.3.0OSVhttps://www.npmjs.com/package/get-deps-path/v/1.0.0OSVhttps://www.npmjs.com/package/get-deps-path/v/1.4.0OSVhttps://www.npmjs.com/package/get-deps-path/v/2.0.0OSVhttps://www.npmjs.com/package/get-deps-path/v/6.5.11OSVhttps://www.npmjs.com/package/get-deps-path/v/1.0.2OSV
Details
Ecosystemnpm
Attack Typebackdoor
Published5/20/2026
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001