express-groups-routes

MAL-2026-722

npmmalware2/4/2026
Description

Malicious code in express-groups-routes (npm)

Indicators of Compromise
SHA256 Hashes (3)
c8c5983f3ca1d455b0aee9018074650c3aed0db620fc55a8f34e49b376017433
5d54e03ffa96877bc24a447c0a77e5c096894fd82176e5705d62713eb5f20f10
3b200220596c79eb3bed0968b14ecb19460544411a842c5d8f4afa8f9155fc1a
References (1)
https://github.com/advisories/GHSA-v866-jcq6-8pmvOSV
Details
Ecosystemnpm
Attack Typemalware
Published2/4/2026
Affected Versions
0
Aliases
GHSA-v866-jcq6-8pmv
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001