431 matches found
EUVD-2025-113060
Malicious code in grunt-ariel-chakra-ui-hugo npm...
EUVD-2025-112566
Malicious code in impulse-hugo-hermes-tailwindcss npm...
EUVD-2025-115728
Malicious code in capella-aether-hugo-command npm...
Malicious code in hugo-prompts-install-nodejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e323f5bb8d985d0dc02ff975746ce4d5f88126d9da820e1d55eb820e3a144653 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115437
Malicious code in changelog-hydra-hugo-ini npm...
EUVD-2025-113310
Malicious code in ganymede-hugo-phoebe-nova npm...
EUVD-2025-112726
Malicious code in hugo-dependencies-quantum-janus npm...
EUVD-2025-113965
Malicious code in eridanus-ganymede-hugo-io npm...
EUVD-2025-124597
Malicious code in nconf-pm2-betelgeuse-hugo npm...
Malicious code in cross-env-fornax-hugo-quito (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5556dec0ff1baab79d034a74410e4b22fd331310a5e83f3480bf3f6fe9730afc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115908
Malicious code in build-ursa-hugo-pulsar npm...
EUVD-2025-114190
Malicious code in electron-hugo-link-config npm...
EUVD-2025-112718
Malicious code in hugo-neptune-bootstrap-css-minimizer-webpack-plugin npm...
EUVD-2025-112770
Malicious code in hexo-hugo-apollo-kronos npm...
EUVD-2025-112721
Malicious code in hugo-mini-css-extract-plugin-phoebe-chakra-ui npm...
MAL-2025-143381 Malicious code in hugo-chalk-rigel-phoebe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33fbcc8a6d77546d8df2d30d0a77c57dca8e17f043376af5bbc204b5e38bbc3a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147449 Malicious code in rimraf-dotenv-safe-wasat-hugo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ccf289cbd205a33d2d44a901a7c9891a58d1e2ea2e6bcbdfbbeecc2e82fd0c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142802 Malicious code in ganymede-hugo-phoebe-nova (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4dd80c359670756604b123ce061016e43ada44c4484b1a074625aef1412f9bae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146903 Malicious code in quantum-hugo-markdown-pdf-registry (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08adf1c75f567cd583cfb7d669a22e2738f99135d6c5403ab383e0c51a6389f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-122215
Malicious code in scorpius-deimos-hugo-csv npm...