scan-only
MAL-2026-6067
npmmalware6/17/2026
Description
Malicious code in scan-only (npm)
Indicators of Compromise
SHA256 Hashes (7)
117c86ce8a46816d63f57e4c6f2015c70c92480428c4436f78b492bfaa5cb2c3
7b940e23f31bc48db5cf3c87a8e9fa1b746505e326521105619dfe12f883da4b
aa03231f11911a8cb8561add13ed2cf6a705021ea2f5b8f6e949a99796cd7cb4
b523ee98635b5214fba801ee136ec0548d4e16c132516d087c788bce841658e0
21ae3a240675015022a6f119cc0795f3904276a955f1bb5f653e883d778c3697
4efea3893451636daac8f951e74e6c36c3fb72b10defac3eadba6ef360913425
633fb5a8c3bbce8086e8c9e8853fa6a81f8b0d2a7645938be0a2fc32aa0be3af
References (7)
https://www.npmjs.com/package/scan-only/v/0.4.2OSVhttps://www.npmjs.com/package/scan-only/v/0.4.3OSVhttps://www.npmjs.com/package/scan-only/v/0.2.0OSVhttps://www.npmjs.com/package/scan-only/v/0.4.1OSVhttps://www.npmjs.com/package/scan-only/v/0.4.0OSVhttps://www.npmjs.com/package/scan-only/v/0.4.4OSVhttps://www.npmjs.com/package/scan-only/v/0.3.0OSV
Details
Ecosystemnpm
Attack Typemalware
Published6/17/2026
Quick Actions