2 matches found
Malicious code in trevora-cir4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba4eb22763416f5dbaf2ed2e8833eed84c75b33ba9f2d637a5ed039580da25a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-147578
Malicious code in trevora-cir4 npm...