EUVD-2025-114385

Malicious code in dotenv-parse-variables-jwt-soap-metalsmith npm...

EUVD-2025-122330

Malicious code in sagitta-dotenv-parse-variables-sedna-mutation npm...

EUVD-2025-111794

Malicious code in less-loader-dotenv-parse-variables-ophiuchus-antd npm...

EUVD-2025-114384

Malicious code in dotenv-parse-variables-meteor-gridsome-eleventy npm...

EUVD-2025-121957

Malicious code in sirius-prettier-stylelint-dotenv-parse-variables-wolf npm...

EUVD-2025-113701

Malicious code in farout-dotenv-parse-variables-umbriel-promise npm...

EUVD-2025-122331

Malicious code in sagitta-development-deneb-dotenv-parse-variables npm...

EUVD-2025-116278

Malicious code in axios-dagda-rollup-plugin-dotenv-parse-variables npm...

EUVD-2025-120463

Malicious code in wezen-rehype-redis-dotenv-parse-variables npm...

EUVD-2025-114374

Malicious code in dotenv-parse-variables-readable-dactyl-dorado npm...

EUVD-2025-124202

Malicious code in nuxtjs-vortex-dotenv-parse-variables-carpo npm...

EUVD-2025-114398

Malicious code in dotenv-parse-variables-callisto-oauth-framework npm...

Malicious code in dotenv-parse-variables-axios-rimraf-socketio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a74e83a98501868b14b36dc23df3d406f687182616811541cd1317ec9c0d1129 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114399

Malicious code in dotenv-parse-variables-cache-halley-commitlint-config-angular npm...

EUVD-2025-114387

Malicious code in dotenv-parse-variables-got-hermes-octans npm...

MAL-2025-141720 Malicious code in dotenv-parse-variables-eris-xenon-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86edc8c541c695f39d29c03f34576642818fa92016bddc5c0a451a0593bcaff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114388

Malicious code in dotenv-parse-variables-google-react-bootstrap-castor npm...

MAL-2025-141716 Malicious code in dotenv-parse-variables-deneb-lyra-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d12ee9ff99eacf328cdcd425a35bd5f6511ae844d95df269fd45b8a33b65be7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141730 Malicious code in dotenv-parse-variables-orbit-relay-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a3849b9c397f74c9e85f87562ef0a98745cf80f49f5851e6d031b90923f5547 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146149 Malicious code in phoebe-dotenv-parse-variables-command-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ece3d0a3c92e4d2ae8824dc2f384b219324b821124e6158568921eabf59b6ec8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...