@11ty/eleventy (=3.0.0-alpha.16), @agiflowai/aicode-toolkit (>=0.6.0 <=1.1.0) +99 more potentially affected by CVE-2026-44646 via liquidjs (>=10.10.0 <=10.25.7)

liquidjs NPM version =10.10.0, =0.6.0, =0.1.0, =0.0.0, =0.5.5, =0.8.0, =1.0.1, =1.6.3, =3.11.0, =3.11.0, =3.11.0, =1.0.0, =1.0.0-beta.5 - @clairview/api =23.1.0 and more Source cves: CVE-2026-44646 Source advisory: OSV:GHSA-9X9P-QF8F-MVJG...

Malicious code in hologram-jekyll-radiometric-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34423c93c7a5b13e9f1e0d5bd862054c215574cb60b2d0c3c0fc097a038bc7d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176114

Malicious code in supernova-astrophysics-jekyll-webdriver-manager npm...

EUVD-2025-175534

Malicious code in winston-writable-betelgeuse-jekyll npm...

EUVD-2025-175493

Malicious code in xerxes-auth-jekyll-ionosphere npm...

Malicious code in virgo-terser-webpack-plugin-resonance-jekyll (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ab26d4bc9b5b8cbf6996ce1f3dfcf3ed1761087d93cbcdbea53728f32230010 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176052

Malicious code in taurus-bootes-jekyll-neptune npm...

EUVD-2025-175650

Malicious code in warp-ora-duplex-jekyll npm...

Malicious code in xerxes-auth-jekyll-ionosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51ad4f9df284c5088fa33be03291602f134c74a08bde68bd1d24c3220134e5cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-175455

Malicious code in yaml-barnard-jekyll-magnetar npm...

EUVD-2025-177343

Malicious code in paleontology-tailwindcss-tethys-jekyll npm...

EUVD-2025-177108

Malicious code in polaris-publish-vortex-jekyll npm...

EUVD-2025-178520

Malicious code in hologram-jekyll-radiometric-bellatrix npm...

EUVD-2025-178454

Malicious code in ignite-jekyll-europa-galaxy npm...

EUVD-2025-178300

Malicious code in janus-repository-acamar-jekyll npm...

EUVD-2025-178281

Malicious code in jekyll-deneb-uglify-js-paleobotany npm...

EUVD-2025-178280

Malicious code in jekyll-less-npm-local npm...

EUVD-2025-178279

Malicious code in jekyll-nightmare-juno-eclipse npm...

EUVD-2025-178276

Malicious code in jekyll-reveal-md-redgiant-prettier-plugin-markdown npm...

EUVD-2025-178075

Malicious code in lint-less-loader-jekyll-virgo npm...