2 matches found
EUVD-2025-112829
Malicious code in hercules-forever-commitlint-publish npm...
Malicious code in hercules-forever-commitlint-publish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b9803406d1325535701e09d7d4d218c17a8cd1c1e737f8f79ae74503e89943b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...