ostk-otel-autoconfig

MAL-2026-511

npmmalware1/25/2026
Description

Malicious code in ostk-otel-autoconfig (npm)

Indicators of Compromise
SHA256 Hashes (5)
b6c6da346f0373ebad97994067d5f50c763b278ab5f70c4f372586222aea2735
eda252bb6f91619b02f1e9c7b7584c9dd50e219e46afc2763df7a085a368b8a0
2523cd47e1801a33b2f2bda82fadc530646d1eb6c9fdd4eaf07f67d577c06bd7
42d5f49a4cdcc1502660b6c0a3a8f62e1dd94de3408e1b16e9f0e6a41266c4d0
5b222e0d41ae144cf784f7fd2c40bd0c9bcb213c76581f4f9285f6f5d3baf36a
References (1)
https://github.com/advisories/GHSA-wcfp-f27x-6p4pOSV
Details
Ecosystemnpm
Attack Typemalware
Published1/25/2026
Affected Versions
0
Aliases
GHSA-wcfp-f27x-6p4p
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001