sea-bound-siren
MAL-2026-5693
npmmalware6/12/2026
Description
Malicious code in sea-bound-siren (npm)
Indicators of Compromise
SHA256 Hashes (7)
4717e8e6f646079604710592d0614926216bdcf4a3929c925b12ff680dc54118
85bf8accd34807acf65beee232c83ed4677d162421502c5df4db46d47442389c
c1efea03f9db514c764d91ea471c738594b63408f9a6fe6e27a76ceb98543f99
d4b6aa93cd450bbf401aa66de54b4620b64d112033306beee52c7543de4427d2
e0c302adc113fd9ccd8059b4d85e53fccf2e5d9d2d7cbe2a0395186953aaace8
214097525dad07740a32778939c24d65d0f54a66d63dd1709b9b4115d0973733
46428d39bfdc14e813676012f43ce76255c81388cb6a7129a0f94806d3c303ce
References (6)
https://github.com/advisories/GHSA-cp5x-35vp-rj7jOSVhttps://www.npmjs.com/package/sea-bound-siren/v/99.0.5OSVhttps://www.npmjs.com/package/sea-bound-siren/v/99.0.4OSVhttps://www.npmjs.com/package/sea-bound-siren/v/99.0.0OSVhttps://www.npmjs.com/package/sea-bound-siren/v/99.0.1OSVhttps://www.npmjs.com/package/sea-bound-siren/v/99.0.2OSV
Details
Ecosystemnpm
Attack Typemalware
Published6/12/2026
Aliases
GHSA-cp5x-35vp-rj7j
Quick Actions