189 matches found
EUVD-2025-123078
Malicious code in pulsar-run-script-redis-convict npm...
EUVD-2025-111618
Malicious code in local-run-script-ophiuchus-global npm...
EUVD-2025-112895
Malicious code in heka-run-script-norma-mongodb npm...
EUVD-2025-122382
Malicious code in run-script-changelog-publish-canopus npm...
EUVD-2025-122368
Malicious code in run-script-update-tethys-jovian npm...
EUVD-2025-116392
Malicious code in aurora-run-script-ophiuchus-rehype npm...
EUVD-2025-122379
Malicious code in run-script-fornax-buffer-inquirer npm...
Malicious code in hapi-run-script-draco-hermes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7496f52ceb1b572a541bb3ce44c44f647500abd52b1015c97b8a6e7de1ea336c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146311 Malicious code in pm2-run-script-eslint-plugin-leda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a817f06ae0a4d8dc0d41ca305b9e56576f1bd8664d47548dc7532d0c54975083 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-116316
Malicious code in avior-solis-grus-run-script npm...
EUVD-2025-124550
Malicious code in neptune-nuxtjs-axios-run-script npm...
EUVD-2025-112556
Malicious code in indus-auth-run-script-capella npm...
EUVD-2025-122380
Malicious code in run-script-eclipse-library-blaze npm...
EUVD-2025-120322
Malicious code in xanadu-run-script-ceres-loopback npm...
EUVD-2025-115792
Malicious code in callback-run-script-html-webpack-plugin-server npm...
MAL-2025-141836 Malicious code in dynamo-run-script-nashira-markdownlint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7361ddf24b24372d3f7d805c9eb58615f9f41cd1281ea692b6ebc64d1b3c543e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-114390
Malicious code in dotenv-parse-variables-electron-builder-rocket-run-script npm...
Malicious code in kinetic-ophiuchus-antares-run-script (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1029ceb8cde15110cf4088fc5abf83c8ab1b9dc7c09f0ee072aecf0241750f02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-121596
Malicious code in stream-run-script-got-morgan npm...
EUVD-2025-120242
Malicious code in xenos-run-script-weywot-exec npm...