2 matches found
Malicious code in boring-indigo-worm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e3e1862f32f2c7cf3c5431a4ef7e7495e88dcf8ec288584c903ced7e8661ebe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-55617
Malicious code in boring-indigo-worm npm...