2 matches found
Malicious code in successful_seahorse_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b79190da381c597f4124c7a2367093fa8add2efda0ccc8023ea7347690105413 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
GHSA-M662-56RJ-8FMM Prebid-universal-creative latest on npm briefly compromised
Impact Npm users of PUC 1.17.3 or PUC latest were briefly affected by crypto-related malware detailed in the blog post below. This includes the extremely popular jsdelivr hosting of this file. Patches We unpublished the version on npm. Workarounds This has already been unpublished. See Prebid.js ...