2 matches found
Malicious code in current-tomato-lemur (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 685d9e506cef16bae43fb33a25ba234d7eb3565bd863fe16f392284a781a8ea5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-55055
Malicious code in current-tomato-lemur npm...