185 matches found
Malicious code in dotenv-parse-variables-axios-rimraf-socketio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a74e83a98501868b14b36dc23df3d406f687182616811541cd1317ec9c0d1129 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-114377
Malicious code in dotenv-parse-variables-postgres-cz-conventional-changelog-transport npm...
EUVD-2025-114375
Malicious code in dotenv-parse-variables-proxima-mongodb-got npm...
EUVD-2025-114254
Malicious code in eclipse-nightmare-framework-dotenv-parse-variables npm...
Malicious code in bunyan-dotenv-parse-variables-bootstrap-wasat (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6a361166347995f8a1116d8387938ce82cbbd896b8be9677f14169f4f20b7a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115504
Malicious code in chai-protractor-dotenv-parse-variables-native npm...
EUVD-2025-114692
Malicious code in cz-conventional-changelog-dotenv-parse-variables-optimize-css-assets-webpack-plugin-elektra npm...
EUVD-2025-114388
Malicious code in dotenv-parse-variables-google-react-bootstrap-castor npm...
Malicious code in commitizen-ultra-event-dotenv-parse-variables (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdf641d61b7de3dfcba8daa85c5581e21a1d8f2b58e574d6a78735cd2319a2fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115294
Malicious code in cli-ursa-rigel-dotenv-parse-variables npm...
Malicious code in dotenv-parse-variables-ora-aquarius-markdown (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ff8e83bb1b3ab4c34714f6ba9d7921da13616d537496b69657f53bf7cb62eb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-120817
Malicious code in venus-figures-configstore-dotenv-parse-variables npm...
EUVD-2025-114372
Malicious code in dotenv-parse-variables-vuetify-winston-sass-loader npm...
EUVD-2025-124219
Malicious code in nuxtjs-dotenv-parse-variables-release-it-nova npm...
EUVD-2025-115766
Malicious code in callisto-levels-subscription-dotenv-parse-variables npm...
EUVD-2025-114390
Malicious code in dotenv-parse-variables-electron-builder-rocket-run-script npm...
EUVD-2025-114353
Malicious code in dotenv-safe-izar-gatsby-dotenv-parse-variables npm...
EUVD-2025-116709
Malicious code in antares-cache-andromeda-dotenv-parse-variables npm...
EUVD-2025-114387
Malicious code in dotenv-parse-variables-got-hermes-octans npm...
Malicious code in dotenv-parse-variables-despina-helios-venus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 394b18f97386bd3801ef7412aeef0d1251cf070f9cc633a408bae11d7719e5c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...