2 matches found
EUVD-2025-122757
Malicious code in rehype-css-loader-metalsmith-carina npm...
MAL-2025-147165 Malicious code in rehype-css-loader-metalsmith-carina (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fe2030d45e843d156fa16ca029b0f063d19d50a9ce988cc4c4a0fe0f2d6ac89 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...