2 matches found
MAL-2025-187824 Malicious code in lithosphere-markdown-pdf-winston-neptune (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc6fbfe227af2797cf89ea184596ed69bc80870c57f08a1e421accae594ddd57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-39027 Malicious code in webpack-lithosphere-playwright-altair (npm)
The package webpack-lithosphere-playwright-altair was found to contain malicious code...