Live Wave Icon New Blog: AsyncAPI Generator Packages Compromised with Miasma RAT
•
Edit Calendar Icon 14 Jul 2026
SafeDep Logo
Pricing
Discover & Monitor
SCA & SBOM
SCA & SBOM

Scan dependencies, generate SBOMs, enforce policy.

AI Agent Discovery
AI Agent Discovery

See every AI tool and SDK in your org.

AI Agent Monitoring
AI Agent Monitoring

Audit every action your AI agents take.

Protect
Developer Security
Developer Security

Block malicious packages at install-time.

CI/CD Security
CI/CD Security

Block malicious packages in your pipeline.

MCP Server
MCP Server

Block threats inside your AI coding agent.

Agent API
Agent API

Threat intelligence API for custom agents.

Threat Intelligence
Threat Intelligence

Real-time malicious package verdicts.

Govern
Endpoint Protection
Endpoint Protection

Package events & AI inventory in the cloud.

Platform
Platform

Centralized policies, dashboard, compliance.

Vet
Vet

Scan and govern your dependencies across every PR and build.

PMG
PMG

Block malicious packages at install-time, before they enter your codebase.

xbom
xbom

Generate AI-enriched BOMs using real code evidence, not just manifests.

GRYPH
GRYPH

Monitor every AI coding agent action across your projects and workflows.

How it works Blog
Documentation
SDK
API
Threat Intelligence Hub
Login Start for Free GitHub 1.5k Discord
ttps T1016
T1016

System Network Configuration Discovery

discovered 2026-07-13

Resolves the installing host public egress IP by requesting Cloudflare /cdn-cgi/trace with a spoofed desktop-browser User-Agent to bypass bot challenges.

View on MITRE ATT&CK

Seen in packages

  • npm @flex-ng/error-componentuses
  • npm @flex-ng/filter-pipeuses
  • npm @flex-ng/header-componentuses
  • npm @idms-corp/auth-uiuses
  • npm @logdna-web/shareduses
  • npm @logdna-web/stylesuses
  • npm tme-xcauses
  • npm tme-xca-reactuses
  • npm tme-erroruses
  • npm enbd-react-loggeruses
  • npm enbd-react-error-boundryuses
  • npm enbd-react-libuses
  • npm box-react-uixuses
  • npm sams-sr-sdk-h5uses
  • npm chat-adapter-zoomuses
  • npm salesforce-vscode-sldsuses
  • npm slds-lsp-clientuses

Campaigns

  • Enterprise Dependency Confusionattributed-to
SafeDep Logo
SafeDep
Terms · Privacy Policy · Cookie Preferences
SOC 2 Type II Certified
ISO 27001:2013 Certified
SOC 2 Type II Certified
ISO 27001:2013 Certified
SOC 2 Type II Certified
ISO 27001:2013 Certified
Product
  • Features
  • Pricing
  • How it works
Solutions
  • AI Agent Discovery
  • AI Agent Monitoring
  • Threat Intel for Agents
  • Threat Intel for SecOps
  • MCP Server
  • Endpoint Protection
  • Threat Intel Data Hub
  • Developer API
  • Partners
Support
  • Docs
  • Community Forum
  • FAQ
  • Professional Services
  • Status
Company
  • About
  • Blog
  • Contact
  • Careers
  • GitHub
© 2026 SafeDep, Inc. All rights reserved
We value your privacy

SafeDep keeps analytics anonymous and cookie-free until you opt in. Accepting helps us understand product usage and improve your experience. Privacy Policy

Choose what you share. You can change this anytime from the footer.

Essential Always on
Remembers your cookie choice and keeps the site secure. Cannot be switched off.
Analytics
PostHog + Google Analytics. Page views, feature usage and CTA clicks to improve the product.