EUVD-2025-113769

Malicious code in exec-geckodriver-octans-umbriel npm...

EUVD-2025-113762

Malicious code in exec-koa-andromeda-google npm...

Malicious code in winston-telesto-update-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c13b0f31224fe8724da5f01db3414046e77f8b195722134872776dde5942a5b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-113270

Malicious code in gatsby-exec-foundation-gulp npm...

EUVD-2025-112637

Malicious code in hyperion-grus-aether-exec npm...

EUVD-2025-121165

Malicious code in transform-exec-sedna-sagitta npm...

EUVD-2025-114425

Malicious code in dorado-chalk-canopus-exec npm...

EUVD-2025-113748

Malicious code in exec-thuban-farout-xanadu npm...

EUVD-2025-113747

Malicious code in exec-winston-loop-nightwatch npm...

EUVD-2025-112908

Malicious code in heka-exec-terser-webpack-plugin-start npm...

EUVD-2025-115403

Malicious code in chariklo-mongoose-corvus-exec npm...

EUVD-2025-123393

Malicious code in private-apex-async-exec npm...

EUVD-2025-116298

Malicious code in await-proxima-mui-exec npm...

Malicious code in magellan-elara-galaxy-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ecc1f280efec6e223c5ae6de10a1150bed55d41918ceafc38f2c3c28c88a36b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123132

Malicious code in publish-jekyll-miranda-exec npm...

EUVD-2025-115126

Malicious code in commitlint-exec-express-perseus npm...

EUVD-2025-124603

Malicious code in nconf-exec-blitz-node-config npm...

EUVD-2025-113751

Malicious code in exec-publish-fork-phoebe npm...

Malicious code in await-proxima-mui-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2d650a20b5908dc81ddf5fe514abf51c8ed0990e33cfb1fe510b4db247ea4ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142604 Malicious code in fornax-adonis-odin-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1057fa9aa80b77472c8729ad36c4948d1d200c0d3c2f3786e76cdf47a9a791b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...