EUVD-2025-113347

Malicious code in gacrux-galaxy-loopback-elara npm...

EUVD-2025-124623

Malicious code in native-spectron-mini-css-extract-plugin-loopback npm...

EUVD-2025-111479

Malicious code in magellan-frontend-loopback-cypress npm...

EUVD-2025-122159

Malicious code in sedna-envconfig-halley-loopback npm...

MAL-2025-144542 Malicious code in loopback-bootstrap-yonder-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83ec91cfd298ae8192aecea899b37e4c3215d79987691a12d3092f9767b48fb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144797 Malicious code in meissa-chakra-ui-cz-conventional-changelog-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9f285c7d45797112ceab0a231619970762984e8ac052e668d9864ec4afeba50 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144655 Malicious code in magellan-pavo-loopback-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c98a09c1d172ad9eb72a14167600f9052a467ab7ce122e23fba068359491f7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-111568

Malicious code in loopback-firebase-postgres-luna npm...

EUVD-2025-111547

Malicious code in loopback-umbra-atlas-perseus npm...

Malicious code in firebase-meissa-loopback-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88272abc19fe27fd8fe14abf6c2687fd476bd7824effb94ab1db41c7704d3038 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-122772

Malicious code in regulus-loopback-gravity-postgres npm...

EUVD-2025-124851

Malicious code in mocha-andromeda-castor-loopback npm...

EUVD-2025-112473

Malicious code in inquirer-chalk-commitlint-config-angular-loopback npm...

EUVD-2025-111565

Malicious code in loopback-frontend-prettier-plugin-markdown-spectron npm...

EUVD-2025-113659

Malicious code in fetch-polaris-loopback-registry npm...

Malicious code in corvus-loopback-yildun-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6529875bab3e3c2ea80662f8dd0237daf2d1c13aca1fa24ecbfe0e6a13e213d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144565 Malicious code in loopback-socketio-restart-resolvers (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fc135c39dd60c0e9542761abc5a6c9b077de7f18dccf0e15264129c66ebd396 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144564 Malicious code in loopback-server-grunt-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f767bb3ff31fa9ecd5cbd84e586ecf684b960f25ac9654339d7fad97c02d920 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-111625

Malicious code in local-loopback-lynx-titan npm...

EUVD-2025-122858

Malicious code in react-bootstrap-loopback-acamar-csrf npm...