173 matches found
MAL-2025-143357 Malicious code in html-webpack-plugin-cache-spawn-jovian (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15fbaa78ca0f18a5e9ed1f2a13da754a46cc25dcf6e512c8966c3e4f105e78f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-116106
Malicious code in betelgeuse-ophiuchus-html-webpack-plugin-yakutsk npm...
EUVD-2025-123327
Malicious code in procyon-html-webpack-plugin-nodemon-phoebe npm...
MAL-2025-147002 Malicious code in quito-request-karma-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c90bb0614863aef8fa9c825f50394f601085ce72fe96a6c0d37ac4d097153fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123405
Malicious code in prettier-stylelint-sails-eridanus-html-webpack-plugin npm...
EUVD-2025-112744
Malicious code in html-webpack-plugin-postcss-aether-magellan npm...
EUVD-2025-124082
Malicious code in ophiuchus-rest-pyxis-html-webpack-plugin npm...
Malicious code in html-webpack-plugin-sedna-css-loader-nebula (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e51b8fdb4d679e44dce5f94d31b2b02d247d6d9cadee2a0d6ef9711492a2d56a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-112749
Malicious code in html-webpack-plugin-hercules-aldebaran-electron npm...
EUVD-2025-112740
Malicious code in html-webpack-plugin-slides-bunyan-node-config npm...
Malicious code in non-blocking-html-webpack-plugin-exec-epimetheus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 132d462cb3f8ba91cc11be917727ab1ca853b46458b018881fc53fadf941c0bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144486 Malicious code in local-fork-postgres-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a55b74dedb1f55e866a3e57ff1b1150151ebfce27b4a2d1e0fa1033db37c196 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123264
Malicious code in promise-yildun-html-webpack-plugin-mocha npm...
EUVD-2025-112753
Malicious code in html-webpack-plugin-dagda-axios-jest npm...
EUVD-2025-115812
Malicious code in callback-apollo-forever-html-webpack-plugin npm...
EUVD-2025-115102
Malicious code in concurrently-hexo-weywot-html-webpack-plugin npm...
Malicious code in dynamo-kronos-loop-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1facc111643156c60818083a3221391ae68c90805f74a1411946c0be5cc3821 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in polaris-betelgeuse-html-webpack-plugin-pm2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d019ca346c566d05986b11fd678198d3a7f42e5ef2de48fd52d62dc516a8c9c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-114281
Malicious code in dynamo-kronos-loop-html-webpack-plugin npm...
EUVD-2025-123851
Malicious code in perseus-blaze-pegasus-html-webpack-plugin npm...