2 matches found
EUVD-2025-114856
Malicious code in cross-env-fornax-hugo-quito npm...
Malicious code in cross-env-fornax-hugo-quito (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5556dec0ff1baab79d034a74410e4b22fd331310a5e83f3480bf3f6fe9730afc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...