json-mapping-sources

MAL-2026-819

npmmalware2/9/2026
Description

Malicious code in json-mapping-sources (npm)

Indicators of Compromise
SHA256 Hashes (3)
b0cfae2b7882c75ea6f086dd86990859edb1ee371ad88cf1b0bdbc3ed2de7159
77824e69a815d8ac27a50bb52fa0a39fe2c7e512e6597d3aefd500b0eae847e8
3dadda660eeab3333d02be6252d9edf924c69a05e2a819fa27e891fb221060ff
References (1)
https://github.com/advisories/GHSA-vphr-h9xh-66ffOSV
Details
Ecosystemnpm
Attack Typemalware
Published2/9/2026
Affected Versions
0
Aliases
GHSA-vphr-h9xh-66ff
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001