yarsg

MAL-2026-974

npmmalware2/20/2026
Description

Malicious code in yarsg (npm)

Indicators of Compromise
SHA256 Hashes (2)
71a7932af2640f624c7daef39143653ecaa9d843bda52f61c22687210fc9961d
9c2ed8a6379e9f5833efbabb80221cc55ce3456a95d14c77ede9ab581bd8f577
References (1)
https://github.com/advisories/GHSA-xw78-h8vv-phcjOSV
Details
Ecosystemnpm
Attack Typemalware
Published2/20/2026
Affected Versions
0
Aliases
GHSA-xw78-h8vv-phcj
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001