EUVD-2025-115090

Malicious code in config-commitlint-config-angular-foundation-spica npm...

EUVD-2025-124064

Malicious code in optimize-css-assets-webpack-plugin-betelgeuse-commitlint-config-angular-apex npm...

EUVD-2025-114240

Malicious code in elara-css-loader-commitlint-config-angular-webdriver-manager npm...

EUVD-2025-122702

Malicious code in release-it-commitlint-config-angular-soap-prettier-stylelint npm...

EUVD-2025-124238

Malicious code in npm-magellan-commitlint-vuepress npm...

EUVD-2025-115110

Malicious code in commitlint-zenobia-run-script-superagent npm...

EUVD-2025-121470

Malicious code in taurus-antares-child-process-commitlint-config-angular npm...

EUVD-2025-112836

Malicious code in hercules-commitlint-config-angular-neptune-blaze npm...

EUVD-2025-114693

Malicious code in cz-conventional-changelog-dorado-commitlint-config-angular-relay npm...

EUVD-2025-114579

Malicious code in delphinus-titan-ora-commitlint npm...

EUVD-2025-121644

Malicious code in start-sirius-commitlint-config-angular-cluster npm...

EUVD-2025-115375

Malicious code in charon-redis-ariel-commitlint npm...

EUVD-2025-115156

Malicious code in commitlint-antares-chariklo-bunyan npm...

EUVD-2025-115151

Malicious code in commitlint-config-angular-babel-tethys-sirius npm...

EUVD-2025-115139

Malicious code in commitlint-config-angular-norma-gravity-yakutsk npm...

Malicious code in commitlint-exec-express-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfbb3b8d5b4ab25056cbd1b06eba3457a1d6a463bc5d8d8387004f7ac002a5a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-115133

Malicious code in commitlint-config-angular-webpack-wasat-ariel npm...

Malicious code in commitlint-csv-auth-oberon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f38ec831b063c5df584e2cbbebb9f222f1a0f88cf465297439c89873f5634853 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146532 Malicious code in private-figures-package-commitlint-config-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d36fd20fd35342e09fa3fb785bb03a67fb101cb03c22763f8c568c575bd8d81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140975 Malicious code in commitlint-config-angular-webpack-wasat-ariel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b38732bb40f27e5ef5078f17e319f036a03a4a5baf07946c9d5ae86538d5462 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...