2 matches found
MAL-2025-138685 Malicious code in electrical-orange-duck (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d44d82b614e64e0f96c58167da3c1f3037dac79370f7c384d319bdf588caa485 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-117417
Malicious code in electrical-orange-duck npm...