2 matches found
Malicious code in karma-cordelia-private-izar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cabfd11c59e2f3ae98ce11ae4f0b511e6e6e016987d8dd0740070fc439c04b40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-112016
Malicious code in karma-cordelia-private-izar npm...