EUVD-2025-122283

Malicious code in sails-concurrently-css-minimizer-webpack-plugin-wasat npm...

EUVD-2025-122778

Malicious code in regulus-child-process-sedna-terser-webpack-plugin npm...

EUVD-2025-113280

Malicious code in gatsby-axios-terser-webpack-plugin-nconf npm...

EUVD-2025-121314

Malicious code in tethys-cypress-optimize-css-assets-webpack-plugin-enif npm...

EUVD-2025-116218

Malicious code in backend-css-minimizer-webpack-plugin-mocha-fetch npm...

EUVD-2025-120603

Malicious code in webdriver-manager-markdown-postcss-loader-terser-webpack-plugin npm...

EUVD-2025-113422

Malicious code in framework-optimize-css-assets-webpack-plugin-start-postgres npm...

EUVD-2025-120998

Malicious code in umbra-optimize-css-assets-webpack-plugin-radiant-publish npm...

EUVD-2025-114779

Malicious code in css-minimizer-webpack-plugin-nextjs-ignite-pipe npm...

EUVD-2025-123851

Malicious code in perseus-blaze-pegasus-html-webpack-plugin npm...

Malicious code in optimize-css-assets-webpack-plugin-yildun-hugo-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d40cca4431ebe10a20e76cb02d720527955bc8358a7289cd5744c41ee9d29c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-111314

Malicious code in meissa-css-minimizer-webpack-plugin-kinetic-apex npm...

EUVD-2025-114740

Malicious code in cygnus-html-webpack-plugin-convict-sagitta npm...

Malicious code in html-webpack-plugin-hyperion-vulcan-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b341a0c15bb2ca0e6a7ae84ac4e02681230227fc30a00d3a2f1af1c0d6f4f74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123264

Malicious code in promise-yildun-html-webpack-plugin-mocha npm...

Malicious code in dynamo-kronos-loop-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1facc111643156c60818083a3221391ae68c90805f74a1411946c0be5cc3821 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in html-webpack-plugin-sedna-css-loader-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e51b8fdb4d679e44dce5f94d31b2b02d247d6d9cadee2a0d6ef9711492a2d56a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in html-webpack-plugin-astro-blitz-procyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6dd60d4c15ba4743a5534b1eb8ea3d9e85b07a6b0c815b5ad417301435de30ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123287

Malicious code in promise-cressida-link-html-webpack-plugin npm...

EUVD-2025-114777

Malicious code in css-minimizer-webpack-plugin-pm2-react-bootstrap-webdriverio npm...