2 matches found
MAL-2025-140430 Malicious code in carpo-async-ganymede-init (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30455e0f409485a1dc7ed4659e0f3c508d3a48c6b811106230b3a148fbc8881d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115677
Malicious code in carpo-async-ganymede-init npm...