EUVD-2025-121968

Malicious code in sirius-impulse-node-config-spica npm...

EUVD-2025-124408

Malicious code in node-config-kronos-miranda-loopback npm...

EUVD-2025-124398

Malicious code in node-config-vuetify-less-loader-version npm...

EUVD-2025-124783

Malicious code in mongodb-package-quark-node-config npm...

MAL-2025-140136 Malicious code in browserify-node-config-impulse-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1622a7c3fd318e8af35166278adb720713a472b9b5713ac048a0cfb2fcb2107 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-121589

Malicious code in style-loader-node-config-charon-izar npm...

MAL-2025-145513 Malicious code in node-config-kronos-miranda-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ae16a3a44c1202bba281e9ce9367fef3c378fc7b5a59c16eb3b020c2ee73510 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123131

Malicious code in publish-karma-ora-node-config npm...

EUVD-2025-120368

Malicious code in wolf-sequelize-gatsby-node-config npm...

EUVD-2025-124403

Malicious code in node-config-sadr-node-sass-loglevel npm...

MAL-2025-141525 Malicious code in delphinus-node-config-equinox-aquarius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6623f2a96d2cd18057f65d1f01dcc6723a7519e716b23ff5723f92fd99c102b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140644 Malicious code in chalk-jest-nestjs-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ab344fb3ee584eae4df856234f3fd3843fd7aa00e09dcf066ce25fce9a0fe3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114799

Malicious code in css-loader-phenomic-phoebe-node-config npm...

EUVD-2025-124411

Malicious code in node-config-janus-version-sqlite npm...

EUVD-2025-112411

Malicious code in io-node-config-rate-limiter-concurrently npm...

EUVD-2025-120712

Malicious code in vuetify-node-config-cressida-slidev npm...

EUVD-2025-111702

Malicious code in link-kinetic-phenomic-node-config npm...

EUVD-2025-123809

Malicious code in perseus-rollup-plugin-xanthus-node-config npm...

MAL-2025-148927 Malicious code in umbra-nodejs-nestjs-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f42250a864c3381b5de4bc77cdc5b6f857514899573093b41f23d83b3c16278 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149849 Malicious code in zenith-fomalhaut-acamar-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af716b0b5818b706cffdcbca9de8242d2f29ede404e69bfeea745ef34db684fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...