EUVD-2025-177492

Malicious code in octans-non-blocking-repository-cosmiconfig npm...

EUVD-2025-175490

Malicious code in xerxes-non-blocking-baryon-solarnebula npm...

MAL-2025-186377 Malicious code in cross-env-atlas-non-blocking-eslint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c136167139e7da8f2dfa597abcb7ee932a4d5968c1f94382ea87cc5b9e43128d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190386 Malicious code in xerxes-non-blocking-baryon-solarnebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ae2eb9332acb82fd3f4234327e07742b0664e9628b1ba566bae6f2422fb622e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-175429

Malicious code in zenith-geckodriver-rimraf-non-blocking npm...

EUVD-2025-175855

Malicious code in typeorm-warp-procyon-non-blocking npm...

EUVD-2025-177513

Malicious code in nucleosynthesis-standard-pulsar-non-blocking npm...

EUVD-2025-177324

Malicious code in parcel-non-blocking-bulma-chakra-ui npm...

EUVD-2025-176126

Malicious code in supercluster-grus-non-blocking-lepton npm...

Malicious code in electron-builder-kaus-non-blocking-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc97f9ddff3d836878325e761ded0213655d4240acbfa676ac68ebd722f29c61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-175835

Malicious code in umbra-mensa-bunyan-non-blocking npm...

EUVD-2025-180068

Malicious code in biohacking-hexo-nebula-non-blocking npm...

EUVD-2025-179411

Malicious code in dagda-non-blocking-html-webpack-plugin-astrophysics npm...

Malicious code in zenith-geckodriver-rimraf-non-blocking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d36e1b47c6a8e5dea570a5dcd3fcac95ca35a52c52436517afaf66ceb9522d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dagda-non-blocking-html-webpack-plugin-astrophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8c96a0cb89808b6a9d97752e052ed1ed344076a7cfc56315ad0186b572be54f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190020 Malicious code in typeorm-warp-procyon-non-blocking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ca2bddcca2cdd5d54a3bc5a9fccb0b9d6cece56e2654a5b6b065097d7536270 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-121934

Malicious code in slides-non-blocking-dotenv-safe-loopback npm...

EUVD-2025-121303

Malicious code in tethys-non-blocking-hexo-spinner npm...

EUVD-2025-124301

Malicious code in non-blocking-sass-loader-celeste-norma npm...

EUVD-2025-121563

Malicious code in subscription-non-blocking-auth0-wolf npm...