1576 matches found
MAL-2025-141602 Malicious code in despina-octans-metalsmith-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9384bbb9fc0aa0e1f16a71cc9464392c53182e411ef298e21246033a29d53347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148548 Malicious code in terser-webpack-plugin-eslint-config-nightmare-native (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83514a209e4c2489491a7e5fa3f9da4da2466d832fb191284eac4fbc6f3b5ee6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142140 Malicious code in eridanus-apollo-webpack-ursa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05b6d3fa2f2b87fcc3aa5e1370bba47b406350a2e793c8bc6d599b8bbd58135d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143370 Malicious code in html-webpack-plugin-rigel-heka-gemini (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ccda5bca647ef2a6a8e7663d0c52c518824ee0fdb312fe1320b093bfdd154c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149190 Malicious code in vortex-request-websockets-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d27d80aa80b3476f8aacf646ef4d6f99528afde9c24988a8d62218931ed277a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143395 Malicious code in hugo-neptune-mui-terser-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d10eed867170bdb10f37fc7c4c60669789a3178c8f7dffdd348dd2f58ae32db1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149407 Malicious code in webpack-sirius-remark-antd (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6f628b8907e950e80fb1ed0d48a93a649bfd242b171a87c339eddd24119c505 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144700 Malicious code in markdown-pdf-optimize-css-assets-webpack-plugin-ursa-envconfig (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deb6fa6a40691312a14cdb3ec297911446378ff71f510e643208327979aae313 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143375 Malicious code in html-webpack-plugin-upgrade-remark-enceladus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59399cefad893f72472df77482546ff2e4acbd7f3456d03c6d07554edc9eab8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-111871
Malicious code in lacerta-html-webpack-plugin-socketio-jabbah npm...
EUVD-2025-120527
Malicious code in webpack-perseus-version-hyperion npm...
EUVD-2025-120539
Malicious code in webpack-bunyan-xo-babel npm...
EUVD-2025-124392
Malicious code in node-sass-callisto-html-webpack-plugin-vulcan npm...
MAL-2025-149400 Malicious code in webpack-kaus-flare-rehype (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75e99fda20e82afdea814a9ed77b877a7de3a8764ca4fffd9bd6948b8fd273ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147885 Malicious code in sequelize-webpack-electron-sqlite (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7c6cef0d1f5fa1940739aefd12c411b829bbad3d9b0e3e28cb1c8356f08516b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139530 Malicious code in apollo-server-terser-webpack-plugin-quantum (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 242351a23e7cfbb27df8dcfbf0a3ce9e20b76ec9c4b6267b770b2fa7c8a05448 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144933 Malicious code in meteor-sagitta-gravity-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 828594916d9bd09aaef2618eea6d415ff52167a88339f2a6c5b4706e6f567eb8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-114812
Malicious code in csrf-sirius-webpack-iota npm...
MAL-2025-144486 Malicious code in local-fork-postgres-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a55b74dedb1f55e866a3e57ff1b1150151ebfce27b4a2d1e0fa1033db37c196 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142533 Malicious code in flare-pm2-capella-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dffdfdbbb62103e9a6ef152943e0d49988b71a782d7479fba5ae5c2294b2f0f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...