EUVD-2025-177103

Malicious code in polaris-winston-cryonics-palynology npm...

EUVD-2025-177695

Malicious code in native-transform-nightmare-polaris npm...

EUVD-2025-123588

Malicious code in polaris-csrf-solis-xanthus npm...

EUVD-2025-116690

Malicious code in antares-grus-mui-polaris npm...

Malicious code in polaris-eslint-bunyan-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 075381e94b557c068496fea2af11a3e089cbe86e465828871771f905a71de889 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in polaris-io-react-bootstrap-polaris (npm)

The package polaris-io-react-bootstrap-polaris was found to contain malicious code...

polaris-9.6.4-1.1 on GA media (moderate)

polaris-9.6.4-1.1 on GA media Announcement ID: openSUSE-SU-2025:15263-1 Rating: moderate Cross-References: CVE-2025-22874 CVSS scores: CVE-2025-22874 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2025-22874 SUSE : 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N...

OPENSUSE-SU-2025:15263-1 polaris-9.6.4-1.1 on GA media

These are all security issues fixed in the polaris-9.6.4-1.1 package on the GA media of openSUSE Tumbleweed...

Malicious code in polaris-example-create-react-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8b09d3e19b74639bb4f35c359140d1a531e719d2e9b76e549ef67c8953446e25 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...