Malicious code in acamar-child-process-oauth-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aecf9405e1356b230c3b5e02f074df3b4d1c15deed220a1ee0fa696389b7d321 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

CVE-2025-5222 affecting package nodejs18 for versions less than 18.20.3-10

CVE-2025-5222 affecting package nodejs18 for versions less than 18.20.3-10. A patched version of the package is available...

EUVD-2025-137901

Malicious code in flights-lutuiog-adifagilo npm...

EUVD-2025-133471

Malicious code in teate-thy-sonic-bupha npm...

EUVD-2025-142808

Malicious code in buta-fs0boiuna-gaif npm...

MAL-2025-171991 Malicious code in walidcroissant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 197384360f80de5c6b9028b5ea2a025db1f27c49811cf6b23300bd4edc3ee9de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

AZL-76323 CVE-2025-13042 affecting package nodejs24 24.13.0-3

Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.166 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

EUVD-2025-112716

Malicious code in hugo-prompts-install-nodejs npm...

EUVD-2025-122211

Malicious code in scorpius-nodejs-sagitta-cz-conventional-changelog npm...

EUVD-2025-124662

Malicious code in mysql-nodejs-callisto-framework npm...

Malicious code in hugo-prompts-install-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e323f5bb8d985d0dc02ff975746ce4d5f88126d9da820e1d55eb820e3a144653 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-121318

Malicious code in testcafe-xenon-chakra-ui-nodejs npm...

EUVD-2025-115145

Malicious code in commitlint-config-angular-ganymede-nodejs-mysql npm...

EUVD-2025-124035

Malicious code in ora-jekyll-nodejs-antd npm...

EUVD-2025-113319

Malicious code in galaxy-nodejs-ultra-wasat npm...

MAL-2025-145569 Malicious code in nodejs-javascript-winston-aether (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a08759811e9231c84fe5943c1d82297170a12b450089b82e470c7d2b2d89911e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-121641

Malicious code in start-ursa-nodejs-server npm...

EUVD-2025-122989

Malicious code in quark-pipe-mocha-nodejs npm...

EUVD-2025-122823

Malicious code in redis-europa-nodejs-rate-limiter npm...

EUVD-2025-122716

Malicious code in relay-nodejs-gulp-proxima npm...