npm

0xegg2024 @1.0.2

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 4:30 AM UTC

Malicious

OSV ID

MAL-2026-3668

Ecosystem

npm

Summary

Tea.yaml token farming campaign

Source: amazon-inspector (86f32380998652e4d6d7b70da165cff6d669a4c6a6d9297da2a137071abf6317)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.