4 matches found
Malicious code in carpo-lynx-sirius-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a61b45a733442dad2bee78073691142efef575d4be2352de5061b96005b2b5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-179875
Malicious code in carpo-lynx-sirius-sirius npm...
EUVD-2025-121574
Malicious code in subscription-css-minimizer-webpack-plugin-carpo-lynx npm...
MAL-2025-148352 Malicious code in subscription-css-minimizer-webpack-plugin-carpo-lynx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4650e80b2c1aaee9d51649d798ab8b1dcd57d9d7758ab69e3f31252ae44e3485 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...