3 matches found
Malicious code in @testcarrot/supply (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 27e1f69fb6202f5542f7e1a2def95407b079bad5dd22d4ef58c3f243c794000d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
EUVD-2025-33319
Malicious code in @testcarrot/supply npm...
Malicious Package
Overview @testcarrot/supply is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...