2 matches found
EUVD-2025-120449
Malicious code in winston-bootes-package-postgres npm...
Malicious code in winston-bootes-package-postgres (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d3336ff67090dc4e941107022c3b2fe2463843101ef8cf3a59afd5e4401b546 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...