402 matches found
MAL-2025-144808 Malicious code in meissa-hugo-express-uninstall (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51f53f1a83e397f83a68c0dfed9dd4061d4d7cc7f2c8481e9a6407b90d2c50a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143381 Malicious code in hugo-chalk-rigel-phoebe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33fbcc8a6d77546d8df2d30d0a77c57dca8e17f043376af5bbc204b5e38bbc3a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143033 Malicious code in gridsome-auriga-hugo-query (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5400b01f0a228464c1b8d83ed4a3fbf00d7d6e8f83f717883a54a3e3fc49282c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146903 Malicious code in quantum-hugo-markdown-pdf-registry (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08adf1c75f567cd583cfb7d669a22e2738f99135d6c5403ab383e0c51a6389f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-122555
Malicious code in rest-sqlite-exec-hugo npm...
Malicious code in hugo-cassini-gulp-flare (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d0cb35f2bb29d0c1fd0f9a34a1c8da3a37d641f3a35dd31b92417b2bb7f8b02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143547 Malicious code in impulse-hugo-hermes-tailwindcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1214df154058bf8b9ff26ea1d90732fb3d0d8f7a49008ca86fb3a19a49be8f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142287 Malicious code in europa-prompts-markdown-hugo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 32d97b16bc6fbf8fad667b969ac047c487cfd6780f814e3e61bb8edf2bad0962 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2021-1294
Malware in sbrugna...
EUVD-2024-3458
Malicious code in bioql PyPI...
EUVD-2024-31398
Malicious code in bioql PyPI...
MAL-2025-45821 Malicious code in rest-hugo-dactyl-kastra (npm)
The package rest-hugo-dactyl-kastra was found to contain malicious code...
Malicious code in hugo-stop-callback-bootstrap (npm)
The package hugo-stop-callback-bootstrap was found to contain malicious code...
Malicious code in hugo-xenos-soap-deneb (npm)
The package hugo-xenos-soap-deneb was found to contain malicious code...
Malicious code in spica-neptune-geodynamo-hugo (npm)
The package spica-neptune-geodynamo-hugo was found to contain malicious code...
Malicious code in rest-hugo-dactyl-kastra (npm)
The package rest-hugo-dactyl-kastra was found to contain malicious code...
MAL-2025-44647 Malicious code in hugo-xenos-soap-deneb (npm)
The package hugo-xenos-soap-deneb was found to contain malicious code...
MAL-2025-46128 Malicious code in spica-neptune-geodynamo-hugo (npm)
The package spica-neptune-geodynamo-hugo was found to contain malicious code...
MAL-2025-44646 Malicious code in hugo-stop-callback-bootstrap (npm)
The package hugo-stop-callback-bootstrap was found to contain malicious code...
Malicious code in jabbah-eridanus-jupiter-hugo (npm)
The package jabbah-eridanus-jupiter-hugo was found to contain malicious code...