2 matches found
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
MAL-2025-179415 Malicious code in @jazuli/terakhir558 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e732fb5e141b31c8befb338fa3e22c1d1f7ab43caf83bf5e102396bdd711486e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...