EUVD-2025-115681

Malicious code in carina-transport-nodejs-sirius npm...

EUVD-2025-116133

Malicious code in betelgeuse-betelgeuse-cassini-nodejs npm...

EUVD-2025-116050

Malicious code in blitz-nodejs-postcss-umbra npm...

Malicious code in zenith-polaris-warp-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1ce5d07c12870a3c118a4ad89de58f1274582f8f89ea161afda22f2f8f4faee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-120073

Malicious code in zenith-polaris-warp-nodejs npm...

EUVD-2025-121176

Malicious code in tool-sails-nodejs-resolvers npm...

EUVD-2025-121001

Malicious code in umbra-nodejs-nestjs-node-config npm...

EUVD-2025-120634

Malicious code in wasat-mui-sadr-nodejs npm...

Malicious code in equinox-nodejs-csrf-dagda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0975315d4e177db7a394dfd05890d08f20a080994d0091cfe03b455a5044775a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-121811

Malicious code in spectron-docusaurus-nodejs-postgres npm...

Malicious code in carina-transport-nodejs-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9674ba3bb4b51d8d50b8bcffcf19428bbdce221fc44e026cbf3f7e6947c75775 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-124344

Malicious code in nodejs-relay-rest-deneb npm...

EUVD-2025-124353

Malicious code in nodejs-io-jwt-global npm...

EUVD-2025-116788

Malicious code in algol-weywot-loopback-nodejs npm...

Malicious code in aurora-tailwindcss-nodejs-lynx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e29f2c221f11923d5f6b23ee57f3071b738e1689f470d3de977ae6470d6b4c9d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-122945

Malicious code in query-scorpius-meissa-nodejs npm...

EUVD-2025-112229

Malicious code in javascript-nodejs-lint-staged-build npm...

EUVD-2025-122704

Malicious code in release-it-chai-framework-nodejs npm...

EUVD-2025-113468

Malicious code in fornax-polaris-nodejs-ignite npm...

EUVD-2025-116546

Malicious code in aquarius-venus-nodejs-soap npm...