236 matches found
EUVD-2025-180088
Malicious code in betelgeuse-metalsmith-frontend-tethys npm...
EUVD-2025-177876
Malicious code in metalsmith-eslint-plugin-proxima-update npm...
EUVD-2025-177872
Malicious code in metalsmith-xanthus-react-bootstrap-sequelize npm...
EUVD-2025-179269
Malicious code in dotenv-metalsmith-proxima-heliophysics npm...
EUVD-2025-175833
Malicious code in umbriel-ariel-rigel-metalsmith npm...
EUVD-2025-179342
Malicious code in dendrochronology-metalsmith-rollup-plutology npm...
MAL-2025-185794 Malicious code in betelgeuse-metalsmith-frontend-tethys (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 790dcd2ceb700af788d0557c09c4d92c94916ec90b672e724cb3fcd64cdc8338 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190418 Malicious code in yakutsk-metalsmith-astrochemistry-terser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 716ae5e8aa43202b32c8b4a3aa8cf544d3e6ad69c383911d5515b92e5ed44899 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175469
Malicious code in xo-koa-metalsmith-perseus npm...
Malicious code in metalsmith-antares-barnard-yildun (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 450389a4510dcbb902b1868e1dfe320565f58b8703cf3b2c809d5d1dce57c4e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177226
Malicious code in phenomic-metalsmith-neptune-fornax npm...
MAL-2025-186540 Malicious code in dendrochronology-metalsmith-rollup-plutology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34d0ed7e883cb7ed56a82796f786014a46174027fa73bce19f797e293167b56f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177873
Malicious code in metalsmith-postcss-loader-magellan-test npm...
EUVD-2025-179434
Malicious code in cypress-geckodriver-vulcan-metalsmith npm...
Malicious code in metalsmith-json-husky-dotenv-safe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 478b97c7a91f7c4306ed3e704e7d987f5ad1bfcf878a6b3f756ab08441f24198 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188010 Malicious code in metalsmith-xanthus-react-bootstrap-sequelize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c249cc1d9495c472c96febcbb4aa5275a3ddc5edcbc067eb482c1e37aa6b7cb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-176887
Malicious code in pyxis-blueshift-metalsmith-enceladus npm...
Malicious code in phenomic-metalsmith-neptune-fornax (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40a3e947e7e13e33325e88989cd6115c193af7ef059f6904daade611693e4fa9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177254
Malicious code in perseus-metalsmith-acamar-iota npm...
EUVD-2025-177096
Malicious code in postcss-loader-ganymede-metalsmith-farout npm...