envfile-sync-cli

MAL-2026-6590

npmtyposquat6/29/2026
Description

Malicious code in envfile-sync-cli (npm)

Indicators of Compromise
SHA256 Hashes (3)
097a9a647e6d99cd53b881cae4fdd747d03b319388107c946c70b8804d3d917b
51eb2af138b221a6eb2501efddb654c6ee43dc751156b20ed3b31c937184a0f7
80994fef101428d1f5d5b331c1915027cf2731ac888b982736dd557c2778c684
Details
Ecosystemnpm
Attack Typetyposquat
Published6/29/2026
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001