3 matches found
MAL-2025-149395 Malicious code in webpack-dotenv-upgrade-callback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4774c14c5941a4916f942059840163dc3766f319a05cd42f18f3b96ca5beb4dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-121857
Malicious code in solis-arcturus-dotenv-upgrade npm...
MAL-2025-148068 Malicious code in solis-arcturus-dotenv-upgrade (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca87b0bfb0cd17d178e3cecbda0ef3048fd1066fb524f365964e3f00cb0dbdc8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...