EUVD-2025-121612

Malicious code in stream-dotenv-parse-variables-izar-antares npm...

Malicious code in dotenv-parse-variables-yonder-flare-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49784ee3d9dd79f226089b8f80f8a69cdef17610770db6905ee6f5d95977d16a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fornax-tailwindcss-start-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb8582cad12e6d58be2b1c5f1fff16e754192a62b29892c049e46a0efcba4b6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114387

Malicious code in dotenv-parse-variables-got-hermes-octans npm...

EUVD-2025-115119

Malicious code in commitlint-inquirer-run-script-dotenv-parse-variables npm...

EUVD-2025-115938

Malicious code in buffer-oberon-dotenv-parse-variables-async npm...

EUVD-2025-120817

Malicious code in venus-figures-configstore-dotenv-parse-variables npm...

EUVD-2025-115766

Malicious code in callisto-levels-subscription-dotenv-parse-variables npm...

EUVD-2025-114376

Malicious code in dotenv-parse-variables-proxima-markdownlint-meteor npm...

Malicious code in node-sass-eslint-plugin-solis-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5aed2df30501f45d7be301a0e5be1666e00b4b3342c466d56d145e396b7a877d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114394

Malicious code in dotenv-parse-variables-dactyl-hermes-spinner npm...

EUVD-2025-111507

Malicious code in lyra-grus-csv-dotenv-parse-variables npm...

MAL-2025-141715 Malicious code in dotenv-parse-variables-dactyl-hermes-spinner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 553918f29ad698a225d2b077fc60b1d34a4522e23490977aae6619892944fad1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in style-loader-impulse-acamar-dotenv-parse-variables (npm)

The package style-loader-impulse-acamar-dotenv-parse-variables was found to contain malicious code...

MAL-2025-46151 Malicious code in style-loader-impulse-acamar-dotenv-parse-variables (npm)

The package style-loader-impulse-acamar-dotenv-parse-variables was found to contain malicious code...

MAL-2025-44052 Malicious code in dotenv-parse-variables-mira-nova-ophiuchus (npm)

The package dotenv-parse-variables-mira-nova-ophiuchus was found to contain malicious code...

MAL-2025-44463 Malicious code in gravitationalwave-corvus-dotenv-parse-variables-xo (npm)

The package gravitationalwave-corvus-dotenv-parse-variables-xo was found to contain malicious code...

Malicious code in dotenv-parse-variables-playwright-pyxis-geochronology (npm)

The package dotenv-parse-variables-playwright-pyxis-geochronology was found to contain malicious code...

Malicious code in dotenv-parse-variables-typeorm-spectron-fusion (npm)

The package dotenv-parse-variables-typeorm-spectron-fusion was found to contain malicious code...

MAL-2025-45181 Malicious code in meteor-dotenv-parse-variables-callback-kaus (npm)

The package meteor-dotenv-parse-variables-callback-kaus was found to contain malicious code...