2 matches found
MAL-2025-189686 Malicious code in stream-polaris-json-ursa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b30bf02b8ab08397ef907793ad4f30bed9073496e1c9a9008a9455e4d891f51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-176189
Malicious code in stream-polaris-json-ursa npm...