1576 matches found
EUVD-2025-113578
Malicious code in flare-pm2-capella-webpack npm...
Malicious code in eslint-enif-webpack-event (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1ed194f599f2836a83fef2b6e825f59f54b15e81de0a8f75e18e895572a8a4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-120806
Malicious code in venus-sedna-terser-webpack-plugin-pino npm...
EUVD-2025-112319
Malicious code in jabbah-terser-webpack-plugin-achernar-radiant npm...
Malicious code in webpack-kaus-flare-rehype (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75e99fda20e82afdea814a9ed77b877a7de3a8764ca4fffd9bd6948b8fd273ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-120517
Malicious code in webpack-vuetify-prompts-xanadu npm...
Malicious code in webpack-titan-upgrade-envconfig (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03ef361cf0faacfe095bff53e3ccd8868652da7534d2db2933a19a04a97ef813 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123572
Malicious code in polaris-jabbah-hermes-css-minimizer-webpack-plugin npm...
Malicious code in webpack-public-uglify-js-atlas (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92633050fb8adf6a74a175f582df02a6039d7469d7d6b33ebfc02ab978a9fbbf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in altair-playwright-webpack-comet (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ff48dcf02a3092ea74936fd4d768da0bd9ac52d2f1244f4a15fb194cc208d8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-112488
Malicious code in init-ignite-weywot-webpack npm...
MAL-2025-148548 Malicious code in terser-webpack-plugin-eslint-config-nightmare-native (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83514a209e4c2489491a7e5fa3f9da4da2466d832fb191284eac4fbc6f3b5ee6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115178
Malicious code in commitizen-fetch-leda-webpack npm...
EUVD-2025-120235
Malicious code in xenos-xenon-husky-webpack npm...
EUVD-2025-120158
Malicious code in yakutsk-kastra-webpack-release-it npm...
EUVD-2025-114967
Malicious code in cors-vuetify-mensa-webpack npm...
Malicious code in package-playwright-webpack-antares (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e65a6262100bed5290dd85a48aa5f7bb581761effb44cc49ac2311ea29a74b09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148544 Malicious code in terser-webpack-plugin-child-process-bunyan-rollup-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4839b0d11bd49cc80454d892a0010eb13cfbad005fb5bf93717d6f499ff2dd7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141611 Malicious code in despina-winston-optimize-css-assets-webpack-plugin-ganymede (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0e0f37ee094b8b166260740fe127d4299bc7ca81d422620f1610734025e8e2f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145108 Malicious code in module-lint-rehype-optimize-css-assets-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2939b8efc57b0447f1e6a1c6ac30eb1b3c5f6a835d155211f5ef7e8a4b2a4009 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...