npm_cimetadata

MAL-2026-848

npmmalware2/11/2026

Description

Malicious code in npm_cimetadata (npm)

Indicators of Compromise

SHA256 Hashes (3)

f7970f24b4e05cac8e0692834347b475d4ab966239b6ad39964ac45802ba49cb

15417f1edc00e00a75d1bd4508447dcb0f65c0e97d819237dc97d1143e975fe2

d1d7a7d39465b33d104fa6608118d45f3077d7a603292dd367135788a47e182d

Details

Ecosystemnpm

Attack Typemalware

Published2/11/2026

Quick Actions

All Incidents npm Incidents

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001