2 matches found
Malicious code in trevora-cir138 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 503831a3fe4b3f5bb1ccaa546ae045def12e9e048fc03788820f0c8c3838e38b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-147619
Malicious code in trevora-cir138 npm...