org.webjars.npm:adal-node (=0.1.28), org.webjars.npm:canvg (>=1.5.2 <=1.5.3) +14 more potentially affected by CVE-2026-41675 via org.webjars.npm:xmldom (>=0.1.31 <=0.6.0)

org.webjars.npm:xmldom MAVEN version =0.1.31, =1.5.2, =0.7.2, =0.14.0, =0.11.0, =7.14.0, =2.7.0, =2.9.2 and more Source cves: CVE-2026-41675 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-16134553...

MAL-2026-2732 Malicious code in buildkite-test-collector-jasmine-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6e8247a020880206aa9a5d4eb40d4b1f61cf39245356fd6e91db063d0c14b79 The package buildkite-test-collector-jasmine-example was found to contain malicious code...

Malicious code in buildkite-test-collector-jasmine-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6e8247a020880206aa9a5d4eb40d4b1f61cf39245356fd6e91db063d0c14b79 The package buildkite-test-collector-jasmine-example was found to contain malicious code...

org.webjars.npm:chai-backbone (=0.9.2), org.webjars.npm:express (=5.1.0) +5 more potentially affected by CVE-2026-4923 via org.webjars.npm:path-to-regexp (=8.2.0)

org.webjars.npm:path-to-regexp MAVEN version =8.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:path-to-regexp and may be impacted: - org.webjars.npm:chai-backbone =0.9.2 - org.webjars.npm:express =5.1.0 -...

org.webjars.npm:chai-backbone (=0.9.2), org.webjars.npm:express (=5.1.0) +5 more potentially affected by CVE-2026-4926 via org.webjars.npm:path-to-regexp (=8.2.0)

org.webjars.npm:path-to-regexp MAVEN version =8.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:path-to-regexp and may be impacted: - org.webjars.npm:chai-backbone =0.9.2 - org.webjars.npm:express =5.1.0 -...

com.github.searls:jasmine-maven-plugin (>=3.0-alpha-01 <=3.0-beta-02), org.webjars.npm:accord (>=0.28.0 <=0.29.0) +174 more potentially affected by CVE-2026-33750 via org.webjars.npm:brace-expansion (=1.1.12)

org.webjars.npm:brace-expansion MAVEN version =1.1.12 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:brace-expansion and may be impacted: - com.github.searls:jasmine-maven-plugin =3.0-alpha-01, =0.28.0, =2.15.2, =1.3.0, =0.3.0, =2.0.3,...

EUVD-2025-175627

Malicious code in wavefunction-parallax-jovian-jasmine npm...

EUVD-2025-177512

Malicious code in nuxtjs-enceladus-miranda-jasmine npm...

EUVD-2025-178355

Malicious code in ionosphere-tachyon-arcturus-jasmine npm...

MAL-2025-190278 Malicious code in webdriverio-jasmine-dione-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6aaff2bb3a08dfb706081881b34cb93ca43e0b8c54aa6229078a2bb1f5e1991 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-178295

Malicious code in jasmine-ichnology-astro-proteomics npm...

EUVD-2025-180421

Malicious code in antares-jasmine-rocket-start npm...

Malicious code in webdriverio-jasmine-dione-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6aaff2bb3a08dfb706081881b34cb93ca43e0b8c54aa6229078a2bb1f5e1991 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-175450

Malicious code in yaml-iota-jasmine-norma npm...

EUVD-2025-175598

Malicious code in webdriverio-jasmine-dione-perseus npm...

EUVD-2025-175538

Malicious code in winston-pino-jasmine-jupiter npm...

EUVD-2025-177608

Malicious code in nightmare-jasmine-janus-prompts npm...

EUVD-2025-177522

Malicious code in nova-virgo-jasmine-redshift npm...

EUVD-2025-177004

Malicious code in prompts-jasmine-wolf-duplex npm...

EUVD-2025-176340

Malicious code in slidev-levels-install-jasmine npm...