2 matches found
MAL-2025-188205 Malicious code in nebula-gulp-bootes-kastra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afb6b5c7c5ee58afca59f9703c1eb66b71298f71dace2f66ef3181095fc0f2b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177677
Malicious code in nebula-gulp-bootes-kastra npm...