1576 matches found
EUVD-2025-122729
Malicious code in rehype-winston-webpack-iota npm...
EUVD-2025-120531
Malicious code in webpack-global-concurrently-venus npm...
EUVD-2025-124059
Malicious code in optimize-css-assets-webpack-plugin-hyperion-dotenv-async npm...
EUVD-2025-120542
Malicious code in webpack-andromeda-axios-jovian npm...
EUVD-2025-112735
Malicious code in html-webpack-plugin-xenon-gacrux-io npm...
MAL-2025-143365 Malicious code in html-webpack-plugin-janus-nightwatch-epimetheus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2bdd909093acd269050ee6c34672fc6bcb6d1f7880dc777e24bb979bea04124 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145108 Malicious code in module-lint-rehype-optimize-css-assets-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2939b8efc57b0447f1e6a1c6ac30eb1b3c5f6a835d155211f5ef7e8a4b2a4009 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141770 Malicious code in dotenv-safe-postcss-loader-taurus-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 311fa8407e3f0b9e342b94b70bbf8b4f70cfd62a93df0c308b3f4b6bc8829b91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139560 Malicious code in aquarius-webpack-apollo-xanthus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8aa3d71e1d7a0e15bb88b0ed383e56df383ddcdda804b23c3df1115b266cab90 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140579 Malicious code in ceres-telesto-bootstrap-optimize-css-assets-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1963d409fb2d23eef932cebebd3c943bfc90713c7057abbfab42485f32f74887 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144905 Malicious code in meteor-corvus-heka-terser-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 479cdad0f54173ac42f22e183a69a52bf1784726c75ba6dc76eb8c6b38dab700 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144388 Malicious code in library-quasar-andromeda-terser-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9782604e3784bcb5e592be57c38e46ddb5fed0911cb299819acd350f717316cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139389 Malicious code in antares-acamar-betelgeuse-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7469440b3ac7a6f8eee981d0de7d186b9e3be1eb14762415ac884f84efec9817 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145856 Malicious code in optimize-css-assets-webpack-plugin-achernar-non-blocking-mensa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3c3dcd2d7106f3ab301acd84ce92ac2fe07d3cb7896514991b57374a38f2209 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147450 Malicious code in rimraf-izar-html-webpack-plugin-rigel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 969f0af5a2acd4f35bc9f6a12bfdee60b30945dd4a21464b014b22f579711f02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144675 Malicious code in magellan-webpack-global-vortex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 545c5ada6135a1efd8ee85d3182f24385c34b4d5d449063bfdced4cdb058754b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149261 Malicious code in warp-avior-html-webpack-plugin-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b11f9b6bfc7e569e71fb19a7e5a3323ecd22de9a47e30dbccd610e408eebd4c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140541 Malicious code in centaurus-bootstrap-callback-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7969750400aaf0b8947f7695420d28f460891a0d6b84261f1405f84b7010400 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144120 Malicious code in karma-spawn-webpack-yonder (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3ad02d4f568f1f8a2b8334848d681a29dba0cdb833d11bd39f564c54fbe6bce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149402 Malicious code in webpack-perseus-version-hyperion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a0bd145a99ea5128f5d6470882e3e2efddd123e1742a090cbad1d83b53255df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...