2 matches found
Malicious code in autotel-tanstack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84ab5510b146ce55059a16ae8610a9ca1c6ad6fffd42ad2a9c4cb09c2d11675f The package was found to contain malicious code or consuming dependency that contains malicious code Source: ghsa-malware...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code containing a malicious binding.gyp file that drops and runs a self-propagating cloud secret stealer. The malicious code attempts to exfiltrate AWS, GCP, Azure, Vault, and Kubernetes credentials, as well as npm an...