EUVD-2025-113103

Malicious code in graphql-selenium-antares-luna npm...

Malicious code in avior-jasmine-graphql-equinox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b3d3277b27acc95161a9bde05520193ebd02caf5c93f00665e5f2c50240f7fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in altair-airbnb-graphql-transform (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c76d50832dc7ab98677387bda1e24e8e43a74397e6dc03c9b59ea52ff4393cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-112459

Malicious code in inquirer-pm2-graphql-miranda npm...

EUVD-2025-122139

Malicious code in sedna-pegasus-graphql-jupiter npm...

EUVD-2025-123119

Malicious code in publish-polaris-graphql-rimraf npm...

EUVD-2025-123890

Malicious code in pegasus-graphql-playwright-husky npm...

EUVD-2025-123923

Malicious code in pavo-graphql-leda-semantic-ui npm...

EUVD-2025-111477

Malicious code in magellan-graphql-levels-inquirer npm...

EUVD-2025-113104

Malicious code in graphql-registry-sedna-configstore npm...

EUVD-2025-123281

Malicious code in promise-graphql-start-superagent npm...

EUVD-2025-124881

Malicious code in miranda-graphql-hyperion-io npm...

EUVD-2025-120470

Malicious code in wezen-local-venus-graphql npm...

EUVD-2025-123329

Malicious code in procyon-ganymede-foundation-graphql npm...

EUVD-2025-121979

Malicious code in sirius-development-gemini-graphql npm...

MAL-2025-143654 Malicious code in inquirer-pm2-graphql-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 964a75711a342b3eb5fc2ab4d78f2cf2af03901b2758dbe99095253d8708e938 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147986 Malicious code in slides-graphql-markdown-pdf-dynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e875d6758d07bb506554c8efb933ea288df266b933847f0fdb34e06da7e69b3c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141276 Malicious code in cross-env-yakutsk-octans-graphql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ec258cbc55d95a4aa0c35968e62956f226510e7535d823debd9ec5c976ed91e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142997 Malicious code in graphql-chai-schema-elara (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8815d1a4d4f17193b365dff9a9095f12e31e182c8b4d9189ceeeb9f15874d46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145078 Malicious code in mocha-graphql-alphard-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 863ae61cac71de360191dd6072306001b2bb6392cf8b16e63c7085e2d018ac6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...