Malicious code in terser-webpack-plugin-materialize-hugo-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abdc0248dd71f94de549dbe0e1436fea2544422c6001231dc2ed9ae2d21e7618 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-115285

Malicious code in cluster-css-minimizer-webpack-plugin-module-rehype npm...

EUVD-2025-114498

Malicious code in despina-winston-optimize-css-assets-webpack-plugin-ganymede npm...

EUVD-2025-124059

Malicious code in optimize-css-assets-webpack-plugin-hyperion-dotenv-async npm...

EUVD-2025-122245

Malicious code in sass-loader-mui-library-optimize-css-assets-webpack-plugin npm...

MAL-2025-148548 Malicious code in terser-webpack-plugin-eslint-config-nightmare-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83514a209e4c2489491a7e5fa3f9da4da2466d832fb191284eac4fbc6f3b5ee6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143370 Malicious code in html-webpack-plugin-rigel-heka-gemini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ccda5bca647ef2a6a8e7663d0c52c518824ee0fdb312fe1320b093bfdd154c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143375 Malicious code in html-webpack-plugin-upgrade-remark-enceladus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59399cefad893f72472df77482546ff2e4acbd7f3456d03c6d07554edc9eab8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-124095

Malicious code in ophiuchus-loop-yaml-terser-webpack-plugin npm...

EUVD-2025-121775

Malicious code in spica-andromeda-loglevel-terser-webpack-plugin npm...

MAL-2025-140301 Malicious code in callback-optimize-css-assets-webpack-plugin-indus-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d2c7bc08e32678dbc7a5f4c90b7c8e47cbb9d8fb461d41c5454e9bcc13d054b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143399 Malicious code in hugo-sedna-element-ui-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8cbb809a5a462eecb562ebf259496a3417030ea7068dd248d7c76664b049056 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143361 Malicious code in html-webpack-plugin-epimetheus-unuk-configstore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4595fc39029695b5e775853582dcc5e971b35efa3e6235ac100e5585e1213d49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142838 Malicious code in gatsby-css-minimizer-webpack-plugin-kinetic-aldebaran (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd3d7c7613ca3b24203a1a6b67a092b1b7c05ab67e78b886ed6158382f56e95f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114443

Malicious code in docusaurus-html-webpack-plugin-jovian-geckodriver npm...

MAL-2025-143739 Malicious code in iota-publish-farout-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5af19c1d6f08e7ef2fd2f4ffea93902babce362354f088e98f6484d66559a40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143364 Malicious code in html-webpack-plugin-hyperion-vulcan-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b341a0c15bb2ca0e6a7ae84ac4e02681230227fc30a00d3a2f1af1c0d6f4f74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145874 Malicious code in optimize-css-assets-webpack-plugin-yildun-hugo-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d40cca4431ebe10a20e76cb02d720527955bc8358a7289cd5744c41ee9d29c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145856 Malicious code in optimize-css-assets-webpack-plugin-achernar-non-blocking-mensa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3c3dcd2d7106f3ab301acd84ce92ac2fe07d3cb7896514991b57374a38f2209 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149190 Malicious code in vortex-request-websockets-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d27d80aa80b3476f8aacf646ef4d6f99528afde9c24988a8d62218931ed277a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...