Malicious code in @posthog/hedgehog-mode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5b044ae176df3e6019c54c314bdf3ec17c98741510cf5c024f85a07c7e520b1 The package @posthog/hedgehog-mode was found to contain malicious code. Source: google-open-source-security...

EUVD-2025-198943

Malicious code in @posthog/hedgehog-mode npm...

MAL-2025-190882 Malicious code in @posthog/hedgehog-mode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5b044ae176df3e6019c54c314bdf3ec17c98741510cf5c024f85a07c7e520b1 The package @posthog/hedgehog-mode was found to contain malicious code. Source: google-open-source-security...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

EUVD-2025-116953

Malicious code in neighbouringhedgehogz3n npm...

EUVD-2025-117457

Malicious code in damaged-rose-hedgehog npm...

EUVD-2025-99753

Malicious code in disturbinghedgehogz3n npm...

Malicious code in yummy_hedgehog_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e55eeacb2d33d9716d0a3256d1589bac36b2b24672cb65ff8acedd9af9163035 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-100080

Malicious code in detailedhedgehogz3n npm...

EUVD-2025-103605

Malicious code in nakedhedgehogz3n npm...

EUVD-2025-97960

Malicious code in internationalhedgehogz3n npm...

Malicious code in naked_hedgehog_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2eee8e2a9349b3601bd76bcd1f0d4cefc376809528d558349448be930fa29231 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-99679

Malicious code in yummyhedgehogz3n npm...

MAL-2025-125904 Malicious code in disturbing_hedgehog_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7602a2ed8df2f2f27a82d54164a33c1a86ca3620fdc62933c481722bebe60715 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-95492

Malicious code in quickhedgehogz3n npm...

EUVD-2025-94949

Malicious code in specialhedgehogz3n npm...

EUVD-2025-89898

Malicious code in naturalhedgehogz3n npm...

EUVD-2025-91237

Malicious code in horizontalhedgehogz3n npm...

MAL-2025-115986 Malicious code in natural_hedgehog_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 028ec2462f46d18b535bfaedfdef9a714455aaae032b8b5556cccefaaf5d6a84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-89181

Malicious code in retailhedgehogz3n npm...