EUVD-2025-112750

Malicious code in html-webpack-plugin-ganymede-test-dione npm...

EUVD-2025-112734

Malicious code in html-webpack-plugin-yakutsk-sass-loader-impulse npm...

EUVD-2025-112833

Malicious code in hercules-docusaurus-css-minimizer-webpack-plugin-upgrade npm...

Malicious code in non-blocking-html-webpack-plugin-exec-epimetheus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 132d462cb3f8ba91cc11be917727ab1ca853b46458b018881fc53fadf941c0bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in polaris-betelgeuse-html-webpack-plugin-pm2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d019ca346c566d05986b11fd678198d3a7f42e5ef2de48fd52d62dc516a8c9c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-112741

Malicious code in html-webpack-plugin-sedna-css-loader-nebula npm...

EUVD-2025-112747

Malicious code in html-webpack-plugin-janus-nightwatch-epimetheus npm...

EUVD-2025-111864

Malicious code in lacerta-optimize-css-assets-webpack-plugin-unuk-prettier npm...

Malicious code in html-webpack-plugin-slides-bunyan-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a6907b6287280cdd51be770f95a0016abb5804f689916408a57db5104aff9b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-116125

Malicious code in betelgeuse-eridanus-css-minimizer-webpack-plugin-zenobia npm...

EUVD-2025-121386

Malicious code in terser-webpack-plugin-airbnb-test-node-sass npm...

EUVD-2025-114784

Malicious code in css-minimizer-webpack-plugin-eleventy-writable-public npm...

EUVD-2025-121370

Malicious code in terser-webpack-plugin-non-blocking-gemini-colors npm...

EUVD-2025-121376

Malicious code in terser-webpack-plugin-foundation-less-subscription npm...

EUVD-2025-116649

Malicious code in antd-dagda-optimize-css-assets-webpack-plugin-remark npm...

Malicious code in geckodriver-lyra-terser-webpack-plugin-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 574c8f5ff036967a5e3b226fc20d99ae1fecf14ea93e18b4e9863c82e5c82e5d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-121380

Malicious code in terser-webpack-plugin-eslint-config-nightmare-native npm...

EUVD-2025-124764

Malicious code in mongoose-html-webpack-plugin-leda-semantic-ui npm...

EUVD-2025-114847

Malicious code in cross-env-optimize-css-assets-webpack-plugin-dependencies-nightwatch npm...

Malicious code in terser-webpack-plugin-dotenv-safe-bulma-foundation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 393c86a40c20147d13ec71247ee073c845eddb0438bcca90cd59b24989b70662 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...