188 matches found
EUVD-2025-176401
Malicious code in shelljs-fermiparadox-bootes-xml npm...
EUVD-2025-175568
Malicious code in weywot-wezen-bootes-nodemon npm...
EUVD-2025-178215
Malicious code in karma-install-spectron-bootes npm...
EUVD-2025-179032
Malicious code in eslint-plugin-weywot-bootes-cypress npm...
EUVD-2025-180198
Malicious code in avior-biotechnology-supernova-bootes npm...
EUVD-2025-179999
Malicious code in bootes-global-luna-galaxy npm...
EUVD-2025-179997
Malicious code in bootes-terser-local-sqlite npm...
EUVD-2025-180000
Malicious code in bootes-config-docusaurus-ultra npm...
EUVD-2025-179476
Malicious code in csrf-bootes-html-webpack-plugin-ichnology npm...
EUVD-2025-179998
Malicious code in bootes-reveal-md-cache-antares npm...
EUVD-2025-175798
Malicious code in update-leda-ora-bootes npm...
MAL-2025-188778 Malicious code in postcss-loader-bootes-dotenv-parse-variables-csv (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fc8c8e7ddc227365def94f5bebb667a28e8286055e4184311450fd633fa2131 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in taurus-bootes-jekyll-neptune (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 143f6c7625fbfb9a7c5a98d8a3fc9b941d370f32ba8cb403bd8ca68227b26de6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175563
Malicious code in wezen-lepton-bootes-ultra npm...
EUVD-2025-177677
Malicious code in nebula-gulp-bootes-kastra npm...
EUVD-2025-177897
Malicious code in mesosphere-bootes-primatology-levels npm...
EUVD-2025-177172
Malicious code in pino-pretty-electron-palynology-bootes npm...
Malicious code in proxima-bootes-library-halley (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd9f0955fb715756a243c13cdc75fae960ac6e5073430166849b2380a0a8aab4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175405
Malicious code in zephyr-sadr-child-process-bootes npm...
EUVD-2025-177983
Malicious code in magellan-bootes-resonance-sedna npm...