EUVD-2025-121068

Malicious code in typeorm-typeorm-development-apollo npm...

EUVD-2025-114469

Malicious code in development-xo-pegasus-schema npm...

EUVD-2025-113900

Malicious code in eslint-config-socketio-development-event npm...

EUVD-2025-115615

Malicious code in castor-procyon-nova-development npm...

EUVD-2025-114483

Malicious code in development-nova-carpo-quark npm...

EUVD-2025-112797

Malicious code in hermes-development-virgo-promise npm...

EUVD-2025-111923

Malicious code in koa-development-nebula-perseus npm...

EUVD-2025-116305

Malicious code in await-dynamo-europa-development npm...

EUVD-2025-124327

Malicious code in nodemon-scorpius-ignite-development npm...

EUVD-2025-124096

Malicious code in ophiuchus-kinetic-development-ursa npm...

EUVD-2025-114471

Malicious code in development-version-schema-semantic-release npm...

MAL-2025-141050 Malicious code in configstore-enif-development-altair (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18867f5616affb9421d74ecd880425debcb7b7e0fc1670211003ddec8dc395d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141625 Malicious code in development-mui-avior-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 847441eefbf7f87609313b98589bff9e11ed701a7d8cef315a07e5b6dc2f7cb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148648 Malicious code in thuban-development-transform-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9970fc2cf7485e3a83f92015f3ef345dc16d84cdf3b6f96adcc69731705a2da6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-116449

Malicious code in atlas-pyxis-prompts-development npm...

MAL-2025-139797 Malicious code in await-dynamo-europa-development (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9d6d85e8e7408451d3696998f145b53a266be50a39fc04a312b692cb078ef01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in release-it-optimize-css-assets-webpack-plugin-nextjs-development (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c764c8e1197089b89a69cbb65b46608e4f93bbeb4b959adc6fa58e7f730d0bf6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143314 Malicious code in hermes-development-browserify-framework (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 603d2d8cb661d4bfb2a2f0cae3ab47d384a2ec9b7bd2980e68a0ee846b0d175c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141619 Malicious code in development-dotenv-pyxis-ariel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae211171bc2d9b5f0fe3cc61c3f814bb976c29080a1cef7a633af982f93147be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114480

Malicious code in development-remark-impulse-hermes npm...