136 matches found
EUVD-2025-123825
Malicious code in perseus-loopback-dotenv-parse-variables-ophiuchus npm...
EUVD-2025-114385
Malicious code in dotenv-parse-variables-jwt-soap-metalsmith npm...
EUVD-2025-115504
Malicious code in chai-protractor-dotenv-parse-variables-native npm...
EUVD-2025-114375
Malicious code in dotenv-parse-variables-proxima-mongodb-got npm...
EUVD-2025-116709
Malicious code in antares-cache-andromeda-dotenv-parse-variables npm...
Malicious code in bunyan-dotenv-parse-variables-bootstrap-wasat (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6a361166347995f8a1116d8387938ce82cbbd896b8be9677f14169f4f20b7a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-113701
Malicious code in farout-dotenv-parse-variables-umbriel-promise npm...
MAL-2025-141720 Malicious code in dotenv-parse-variables-eris-xenon-postcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86edc8c541c695f39d29c03f34576642818fa92016bddc5c0a451a0593bcaff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143767 Malicious code in izar-virgo-library-dotenv-parse-variables (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a584237b56eb540fa7a336cb2e55a1a35745b2e69f5dbaf4ea5b1ee12221ce9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141726 Malicious code in dotenv-parse-variables-module-oauth-magellan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38a7e6b95515a31d1233ebba86b161e09735889427de239e0a45d6000fe29d46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115186
Malicious code in command-sirius-request-dotenv-parse-variables npm...
EUVD-2025-121868
Malicious code in socketio-lint-staged-cressida-dotenv-parse-variables npm...
EUVD-2025-116626
Malicious code in apex-dotenv-parse-variables-wezen-ora npm...
EUVD-2025-114398
Malicious code in dotenv-parse-variables-callisto-oauth-framework npm...
EUVD-2025-122659
Malicious code in repository-dotenv-parse-variables-foundation-websockets npm...
EUVD-2025-112210
Malicious code in jekyll-elektra-vortex-dotenv-parse-variables npm...
Malicious code in dotenv-parse-variables-axios-rimraf-socketio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a74e83a98501868b14b36dc23df3d406f687182616811541cd1317ec9c0d1129 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-112285
Malicious code in janus-private-phoebe-dotenv-parse-variables npm...
EUVD-2025-114372
Malicious code in dotenv-parse-variables-vuetify-winston-sass-loader npm...
EUVD-2025-123472
Malicious code in postgres-spinner-titan-dotenv-parse-variables npm...