MAL-2025-49762 Malicious code in agus-sate84-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 44a22dbe5256030ef11feeaf82f8fde62aea69b817305911dc618f2965313bf2 The package agus-sate84-ruro was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that flooded n...

MAL-2025-51450 Malicious code in citra-sate14-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb62cc5423ff5d9078179f29746ea010686b11fb23567ff440fd15f6c887a761 The package citra-sate14-ruro was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that flooded...

MAL-2025-51203 Malicious code in candra-lapis19-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02766c626a7cd256d64de21b5cae0b55c8813a326f73bdf94a54a4eb9998a59c The package candra-lapis19-sluey was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that flood...

Malicious code in dewanto-rawon37-sumpek (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b44e20997c160564d232f91769b8da90296ad518cc6baab45204e7fd22fbdae2 The package dewanto-rawon37-sumpek was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that...

MAL-2025-51013 Malicious code in bayu-tumis4-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 439e720dba25c21d3530a32c2c76bb60d86eff152ab6e6ee001570aad7298853 The package bayu-tumis4-riris was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that flooded...

MAL-2025-50347 Malicious code in erwin-lontong66-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd174366babd1de8c344dae4f53861f7c7128551720c25c80b850c42a7828989 The package erwin-lontong66-breki was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that...

MAL-2025-51634 Malicious code in eka-lengko15-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6e1eaec43c6cce8a969be44e9c9f06089f3019109d4330e49df3587feb9ca33 The package eka-lengko15-riris was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that flooded...

MAL-2025-50817 Malicious code in andi-nasi47-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 775880ce13e2f6d0200bef297680ca2337945f731c3f57d544e1d14a73ad4667 The package andi-nasi47-sluey was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that flooded...

PhantomRaven Malware Found in 126 npm Packages Stealing GitHub Tokens From Devs

Cybersecurity researchers have uncovered yet another active software supply chain attack campaign targeting the npm registry with over 100 malicious packages that can steal authentication tokens, CI/CD secrets, and GitHub credentials from developers' machines. The campaign has been codenamed...

10 npm Packages Caught Stealing Developer Credentials on Windows, macOS, and Linux

Cybersecurity researchers have discovered a set of 10 malicious npm packages that are designed to deliver an information stealer targeting Windows, Linux, and macOS systems. "The malware uses four layers of obfuscation to hide its payload, displays a fake CAPTCHA to appear legitimate, fingerprint...

MAL-2025-48835 Malicious code in eithernet (npm)

--- -= Per source details. Do not edit below this line.=-...

01homework (>=1.0.0 <=1.0.1), 0xauth (>=0.0.2 <=0.0.6) +7152 more potentially affected by CVE-2025-56200 via validator (>=0.1.8 <=13.15.15)

validator NPM version =0.1.8, =1.0.0, =0.0.2, =0.0.6, =0.0.1, =1.0.0, =4.11.0, =0.0.0-canary.0, =0.0.2, =0.0.1, =0.1.0, =0.8.0, =1.0.17, =1.0.33 and more Source cves: CVE-2025-56200 Source advisory: OSV:GHSA-9965-VMPH-33XX...

007putra-my-bot (=1.1.1), 10bis-shufersal-automation (=1.0.0) +4993 more potentially affected by CVE-2025-59343 via tar-fs (>=2.0.0 <=2.1.3)

tar-fs NPM version =2.0.0, =0.2.0, =1.0.0, =1.0.0, =0.107.10, =1.19.19, =0.107.0, =0.107.0, =0.107.0, =0.69.0, =0.107.0, =0.97.1, =0.107.0, =0.107.0, =0.123.2 and more Source cves: CVE-2025-59343 Source advisory: SNYK:JS-TARFS-13045213...

CVE-2025-59037

DuckDB is an analytical in-process SQL database management system. On 08 September 2025, the DuckDB distribution for Node.js on npm was compromised with malware along with several other packages. An attacker published new versions of four of DuckDB's packages that included malicious code to...

@bnsights/bbsf-admin-portal (>=1.1.93-beta.1 <=1.2.17), @bnsights/bbsf-utilities-doc (=1.2.1) +14 more potentially affected by CVE-2025-59145 via color-name (=2.0.0)

color-name NPM version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on color-name and may be impacted: - @bnsights/bbsf-admin-portal =1.1.93-beta.1, =2.26.0, =4.1.4, =6.0.1-alpha.3, =6.0.1-alpha.7, =6.0.1-alpha.3, =6.0.1-alpha.7, =6.0.1-alpha.3,...

02.koa-demo (=1.0.0), 0510test (=1.0.0) +13096 more potentially affected by unknown CVE via koa (>=0.0.1 <=3.2.0)

koa NPM version =0.0.1, =1.3.7, =1.0.0, =0.0.1, =1.0.0, =1.0.1 - 2-26 =1.0.0 and more Source cves: unknown CVE Source advisory: SNYK:JS-KOA-12143256...

1shot (>=0.0.3 <=0.0.9), @4via6/relay (>=1.0.0 <=1.1.3) +218 more potentially affected by CVE-2025-55284 via @anthropic-ai/claude-code (>=0.2.126 <=1.0.24)

@anthropic-ai/claude-code NPM version =0.2.126, =0.0.3, =1.0.0, =0.1.18, =1.0.0, =0.4.0, =0.2.3, =0.0.1, =0.0.1, =0.0.55, =0.0.69 - @brandongtr/rule-agent-cli =1.0.1-beta.0 and more Source cves: CVE-2025-55284 Source advisory: OSV:GHSA-X5GV-JW7F-J6XJ...

1shot (>=0.0.3 <=0.0.9), @4xian/ccapi (=1.0.6) +206 more potentially affected by CVE-2025-54795 +1 more via @anthropic-ai/claude-code (>=1.0.108 <=1.0.128)

@anthropic-ai/claude-code NPM version =1.0.108, =0.0.3, =0.1.18, =1.0.0, =0.4.0, =0.2.3, =0.0.1, =0.6.0-rc34, =1.0.0, =1.3.2-canary.5af7e49 - @chittycorp/chittychat =3.0.0 and more Source cves: CVE-2025-54795, CVE-2025-547954 Source advisory: SNYK:JS-ANTHROPICAICLAUDECODE-11502065...

007putra-my-bot (=1.1.1), 10bis-shufersal-automation (=1.0.0) +4993 more potentially affected by CVE-2025-48387 via tar-fs (>=2.0.0 <=2.1.2)

tar-fs NPM version =2.0.0, =0.2.0, =1.0.0, =1.0.0, =0.107.10, =1.19.19, =0.107.0, =0.107.0, =0.107.0, =0.69.0, =0.107.0, =0.97.1, =0.107.0, =0.107.0, =0.123.2 and more Source cves: CVE-2025-48387 Source advisory: OSV:GHSA-8CJ5-5RVV-WF4V...

Fedora: Security Advisory (FEDORA-2025-2936dece0e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...