VDB
KO

MAL-2025-32206

Malicious code in rhynpm (npm)

Details

The package rhynpm was found to contain malicious code.

--- _-= Per source details. Do not edit below this line.=-_

## Source: ghsa-malware (32a726fb973a63bc1df07539cc817c5ded4ff281cd76ba9b7193b154578ad938) The package rhynpm was found to contain malicious code.

---

Credit: [OpenSSF](https://github.com/ossf/malicious-packages) ([source](https://github.com/ossf/malicious-packages/blob/a9c5c026063beff48b794797f7b4d649cc67a034/osv/malicious/npm/rhynpm/MAL-2025-32206.json))

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / rhynpm
Introduced in: 0

No fixed version published yet for rhynpm (npm). Pin to a known-safe version or switch to an alternative.

References