normalize-plus

MAL-2026-6399

npmmalware6/24/2026
Description

Malicious code in normalize-plus (npm)

Indicators of Compromise
SHA256 Hashes (1)
68736aa001dbb92a66fb97c6f5592b47bd0bafdcb56a325a4c8595f0b10829c7
Details
Ecosystemnpm
Attack Typemalware
Published6/24/2026
Aliases
GHSA-fr34-v6cp-fc49
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001