MAL-2026-2770 Malicious code in helios-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abeb968ba4df2b2034b9794205c8251dd5687f652448abd156fafb7f117fbc6e The package helios-components was found to contain malicious code...

Malicious code in helios-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abeb968ba4df2b2034b9794205c8251dd5687f652448abd156fafb7f117fbc6e The package helios-components was found to contain malicious code...

IACR Nullifies Election Because of Lost Decryption Key

The International Association of Cryptologic Research--the academic cryptography association that's been putting conferences like Crypto back when "crypto" meant "cryptography" and Eurocrypt since the 1980s--had to nullify an online election when trustee Moti Yung lost his decryption key. For thi...

EUVD-2025-175914

Malicious code in transform-blitz-element-ui-helios npm...

EUVD-2025-178892

Malicious code in firebase-helios-bionics-virtualreality npm...

EUVD-2025-176094

Malicious code in supervisor-helios-stream-rate-limiter npm...

EUVD-2025-178565

Malicious code in helios-fusion-rollup-command npm...

EUVD-2025-179616

Malicious code in concurrently-fork-blazar-helios npm...

Malicious code in astro-helios-nightwatch-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c597e6e94b0dc9824b4353d492fad15b37f4cfe800812bcf2c4174a1e8e63b3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176462

Malicious code in sedna-json-yildun-helios npm...

EUVD-2025-178172

Malicious code in kuiperbelt-nova-parsec-helios npm...

EUVD-2025-178566

Malicious code in helios-epigenetics-asteroid-eclipse npm...

MAL-2025-187314 Malicious code in helios-centaurus-juno-lint-staged (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 929260b67680ed0507a691726e1f4f84a5fb3205b6e1217e1356966bbbfa20e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in helios-fusion-rollup-command (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39e25b31fe31c11fea70657cac7ab2cab55d83c2a919aa7ee6feccf67d47567c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176199

Malicious code in stratigraphy-helios-janus-electron-builder npm...

EUVD-2025-175516

Malicious code in xanthus-websockets-helios-duplex npm...

EUVD-2025-177562

Malicious code in node-sass-mutation-cladistics-helios npm...

EUVD-2025-176640

Malicious code in rigel-helios-phoebe-fermion npm...

EUVD-2025-178567

Malicious code in helios-cressida-biogeochemistry-halley npm...

EUVD-2025-178562

Malicious code in helios-webdriver-mocha-superposition-phylogenetics npm...