qontract-reconcile

MAL-2026-4765

PyPItyposquat5/19/2026
Description

Malicious code in qontract-reconcile (PyPI)

Indicators of Compromise
SHA256 Hashes (4)
7aa7ef5313e2992ad7fd204289f940308ced84671d868613a385fb35a225527e
bee34269c7f3aae4181b856b9b73a57abf59acc94d076d51b4fb6c14b8fc5508
fd84d36747baada1a52ae63f706412b565c30de518a3113e2b899615a0c4ed8a
a0aa508b34b3a40193a64faf2b6788a0be2b01bf40b7126279e7b303097fd5e5
References (4)
https://pypi.org/project/qontract-reconcile/0.10.2.dev653/OSVhttps://pypi.org/project/qontract-reconcile/0.10.2.dev649/OSVhttps://pypi.org/project/qontract-reconcile/0.10.2.dev663/OSVhttps://pypi.org/project/qontract-reconcile/0.10.2.dev658/OSV
Details
EcosystemPyPI
Attack Typetyposquat
Published5/19/2026
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001