ROOT-APP-NPM-CVE-2022-0144 CVE-2022-0144 in @rootio/shelljs - Patched by Root

Root has patched CVE-2022-0144 in the @rootio/shelljs package for Root:npm. Multiple fixed versions available...

Astra Linux - уязвимость в node-shelljs

ShellJS is vulnerable to improper privilege management...

EUVD-2025-178412

Malicious code in ini-barnard-juno-shelljs npm...

EUVD-2025-176402

Malicious code in shelljs-biotechnology-leda-europa npm...

EUVD-2025-176484

Malicious code in scripts-shelljs-quark-gridsome npm...

EUVD-2025-176398

Malicious code in shelljs-zephyr-ariel-brane npm...

EUVD-2025-176401

Malicious code in shelljs-fermiparadox-bootes-xml npm...

EUVD-2025-175646

Malicious code in wasat-carina-shelljs-sqlite npm...

Malicious code in ini-barnard-juno-shelljs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3dbf5daee4a63bb5da7d2edd25d7ce8d9d7bc3d058330917f28aa7374a6ef12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-179145

Malicious code in enceladus-shelljs-cryonics-betelgeuse npm...

EUVD-2025-177275

Malicious code in pegasus-shelljs-public-seismology npm...

Malicious code in umbriel-gulp-sqlite-shelljs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a191c64e27e6c7846f4fb786da99ba6ab75ab274a4df6b2b6334a001d7cd9cbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sedna-shelljs-tailwindcss-photon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a5705ab9dcb1d6154f909da22e40f7e97327537bc2e24903cc8ad7a9269aaa1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-179809

Malicious code in ceres-petrology-callisto-shelljs npm...

EUVD-2025-175608

Malicious code in webdriver-mocha-apollo-server-shelljs npm...

EUVD-2025-176022

Malicious code in telesto-neptune-tethys-shelljs npm...

MAL-2025-186073 Malicious code in ceres-petrology-callisto-shelljs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ef236e8eb1b727325a3aa33594675cd45f7056b4eeb66de2ec6f4c3717e7eb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186737 Malicious code in enceladus-shelljs-cryonics-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d57706f2890df2c5e6d5e2d2c8879191da18cd3bc37af5c20d75071e63233fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188795 Malicious code in prettier-despina-gacrux-shelljs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00fec6deb30bd5cd5a5e545dce825592415f1f20a4686a084e6cb1c5169e3902 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sagitta-shelljs-halley-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c27d14c78f0650cc9e36a6a09704b5376e65f49f575b3bcc650e67f28f0dbb37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...