2 matches found
MAL-2025-141752 Malicious code in dotenv-safe-gemini-spica-materialize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d90a21326b456e45374854954b0fa67cbaa4f70120bb594b30d8ad762c87e9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-114357
Malicious code in dotenv-safe-gemini-spica-materialize npm...