5 matches found
GHSA-J8PH-6FXJ-G533 Steeltoe.Discovery.Eureka: Unrecognized DataCenterInfo.Name poisons entire registry fetch
Summary DataCenterInfo.FromJson throws ArgumentException for any name value other than "MyOwn" or "Amazon", despite the Java Eureka specification defining a third valid value: "Netflix". The exception propagates through the entire registry deserialization chain and is swallowed by the periodic...
MAL-2025-172201 Malicious code in augis-po9r-nomina (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae74cf90a1adba4a42a6e3b5d8e5d7232186ef501d76c52ec0dd8e9ced2000b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hon_canid_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e59ce1f76e369f6f80f205637fcf98dfb762514b8ef3d2e4f9c9feedff597bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-89923 Malicious code in reliable_sturgeon_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac3a1dfd524b609e3664a9cab6e54b4a354c2bb41422207ddb704f31252d682d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-67178 Malicious code in chosen-lime-snipe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1328f512e5f3b3537c9ce44f62d52e3ddd47dac95df8b72e4f8dccb3bdcdfc83 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...