199 matches found
MAL-2025-190916 Malicious code in @tezign/html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 437929a07e5bc4e0e6dfe545fa858db027aa2ba4e6fa87701a09d5b07277b543 The package @tezign/html-webpack-plugin was found to contain malicious code...
EUVD-2025-176604
Malicious code in rollup-plugin-html-webpack-plugin-cordelia-rollup npm...
EUVD-2025-179933
Malicious code in bunyan-redis-capella-html-webpack-plugin npm...
EUVD-2025-179821
Malicious code in centaurus-farout-html-webpack-plugin-callisto npm...
EUVD-2025-179476
Malicious code in csrf-bootes-html-webpack-plugin-ichnology npm...
EUVD-2025-178503
Malicious code in html-webpack-plugin-version-vulcan-rollup npm...
EUVD-2025-179670
Malicious code in comet-auth-html-webpack-plugin-request npm...
Malicious code in html-webpack-plugin-vega-atlas-fetch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72fd14fbfa7df3518df196ac7331d4c07644a19e457f73f31be91ee9ab01ce42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177195
Malicious code in phoenix-perseus-mocha-html-webpack-plugin npm...
MAL-2025-188917 Malicious code in proxima-ophiuchus-geckodriver-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5c7e0b28606987a99e1e5a3132f404b2435465dcff64ef832c045c0ce0f5423 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187381 Malicious code in html-webpack-plugin-zenobia-nebula-antares (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bda7c207337434698205e1a554e373872174bfe0253efa98b12e47eb140c345e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177417
Malicious code in orbit-html-webpack-plugin-xml-docusaurus npm...
EUVD-2025-179411
Malicious code in dagda-non-blocking-html-webpack-plugin-astrophysics npm...
EUVD-2025-178510
Malicious code in html-webpack-plugin-atlas-global-lacerta npm...
Malicious code in html-webpack-plugin-deimos-toml-command (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bb045f13fdeba200e83090bae2409a07346335c9f563b24f275cd3404d87132 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-176252
Malicious code in spica-html-webpack-plugin-kronos-husky npm...
EUVD-2025-178502
Malicious code in html-webpack-plugin-wavefunction-local-ora npm...
EUVD-2025-178505
Malicious code in html-webpack-plugin-taphonomy-test-coronalmassejection npm...
Malicious code in dagda-non-blocking-html-webpack-plugin-astrophysics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8c96a0cb89808b6a9d97752e052ed1ed344076a7cfc56315ad0186b572be54f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in spica-html-webpack-plugin-kronos-husky (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82181ab2b25bcac772e3cecded34360db1572cf56e392f5f6310c0335bed342a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...