136 matches found
EUVD-2025-122561
Malicious code in rest-publish-algol-dotenv-parse-variables npm...
Malicious code in dotenv-parse-variables-axios-rimraf-socketio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a74e83a98501868b14b36dc23df3d406f687182616811541cd1317ec9c0d1129 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-eslint-plugin-solis-dotenv-parse-variables (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5aed2df30501f45d7be301a0e5be1666e00b4b3342c466d56d145e396b7a877d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-114369
Malicious code in dotenv-parse-variables-yonder-readable-vega npm...
EUVD-2025-121868
Malicious code in socketio-lint-staged-cressida-dotenv-parse-variables npm...
EUVD-2025-114692
Malicious code in cz-conventional-changelog-dotenv-parse-variables-optimize-css-assets-webpack-plugin-elektra npm...
EUVD-2025-114398
Malicious code in dotenv-parse-variables-callisto-oauth-framework npm...
EUVD-2025-114375
Malicious code in dotenv-parse-variables-proxima-mongodb-got npm...
EUVD-2025-114383
Malicious code in dotenv-parse-variables-module-oauth-magellan npm...
MAL-2025-139393 Malicious code in antares-cache-andromeda-dotenv-parse-variables (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a69f1e0e67e5d014f4810d287a413d9c3f360df647b2978a8a65cd71af5f0a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-120259
Malicious code in xenon-xenos-sadr-dotenv-parse-variables npm...
EUVD-2025-114387
Malicious code in dotenv-parse-variables-got-hermes-octans npm...
Malicious code in dotenv-parse-variables-ora-aquarius-markdown (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ff8e83bb1b3ab4c34714f6ba9d7921da13616d537496b69657f53bf7cb62eb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115161
Malicious code in commitizen-ultra-event-dotenv-parse-variables npm...
EUVD-2025-114388
Malicious code in dotenv-parse-variables-google-react-bootstrap-castor npm...
EUVD-2025-114385
Malicious code in dotenv-parse-variables-jwt-soap-metalsmith npm...
EUVD-2025-112958
Malicious code in halley-markdown-pdf-terser-webpack-plugin-dotenv-parse-variables npm...
EUVD-2025-114386
Malicious code in dotenv-parse-variables-gridsome-alphard-draco npm...
EUVD-2025-116626
Malicious code in apex-dotenv-parse-variables-wezen-ora npm...
EUVD-2025-115294
Malicious code in cli-ursa-rigel-dotenv-parse-variables npm...