Lucene search
K

4 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2 days ago5 views

Malicious code in polymarket-trading-developer-tools (npm)

Malicious npm package published as part of a coordinated DeFi-themed infostealer campaign targeting Polymarket developers. polymarket-trading-developer-tools uses a dropper technique: a postinstall hook downloads configuration from pm-trading-dev-tools-be.vercel.app and exfiltrates data to the...

6AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:29 a.m.2 views

Malicious code in restart-procyon-apollo-playwright (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f42e3571477042a427ea800803cc8cce7743f22a2f72d8c43432ac8fd4a5c96c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 3:19 p.m.2 views

Malicious code in objective_takin_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e3cb3f8b7ac93d8bb46af55df293e3b6b42ae066caf5f990f0fbecc50d3a8e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 12:17 a.m.1 views

Malicious code in dono-keraktelor34-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1716b30badaac2d53c803286164589f870dc15f8e021d4353e7cbf6db3bc887d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
Rows per page
Query Builder