kwp-shared-components-production-system

MAL-2026-480

npmmalware1/23/2026
Description

Malicious code in kwp-shared-components-production-system (npm)

Indicators of Compromise
SHA256 Hashes (3)
2b2bf82ab1e7b02c2c3398dc73b6c1635e7f3e8da7f0a3aa11123d5db5a19b56
da9ef3ed80c88933ad9c55e74914ecc58ae0f5ff58929a8d1f6aab88fa9ad9d8
2921793e680a6b1db313148bc3f067d04eccf13d9fa0381d3afd0f0d2273e4d3
References (1)
https://github.com/advisories/GHSA-5rrx-w333-h86qOSV
Details
Ecosystemnpm
Attack Typemalware
Published1/23/2026
Affected Versions
0
Aliases
GHSA-5rrx-w333-h86q
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001