EUVD-2025-199502

Malicious code in @dev-blinq/cucumber-js npm...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

MAL-2025-48620 Malicious code in cucumber-js-cypress-cucumber (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 70db607bb8c970e11a45d9a570b2d97a6a3293ca89e4a789c6a8163b9ebf78cb Any computer that has this package installed or running should be considered...

Malicious Package

Overview cucumber-js-browserstack is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

Malicious code in cucumber-js-browserstack (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c2f1891754984c705408dd02f9fb37660e1d4d84780ad4be25a83910d1eb789d Any computer that has this package installed or running should be considered...

MAL-2025-47304 Malicious code in cucumber-js-browserstack (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c2f1891754984c705408dd02f9fb37660e1d4d84780ad4be25a83910d1eb789d Any computer that has this package installed or running should be considered...