PkgRadar

Malware advisory

MAL-2025-190947

Malicious code in @posthog/plugin-server (npm)

4 affected releases in the PkgRadar corpus · published 2025-11-24 · upstream advisory

Affected packages

PackageEcosystemVersionVerdictScanned (UTC)
@posthog/plugin-servernpm1.10.5High risk2026-07-02
@posthog/plugin-servernpm1.10.4High risk2026-07-02
@posthog/plugin-servernpm1.10.6High risk2026-06-23
@posthog/plugin-servernpm1.10.7High risk2026-06-20

PkgRadar blocks these releases at the CI gate before they reach your build. Start free or see all advisories.

MAL-2025-190947 — malicious package advisory | PkgRadar