EUVD-2025-176770

Malicious code in redis-adonis-quito-io npm...

EUVD-2025-176823

Malicious code in quito-rocket-radiant-middleware npm...

EUVD-2025-176825

Malicious code in quito-fornax-dynamo-csrf npm...

EUVD-2025-178409

Malicious code in ini-quito-stratosphere-slides npm...

EUVD-2025-179464

Malicious code in css-minimizer-webpack-plugin-brane-saturnology-quito npm...

Malicious code in quito-rocket-radiant-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb1027d85e5f5fe77252e470808dec33a66a0131fb5706d9c2bdc7aef3e9a7b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176827

Malicious code in quito-config-lightyear-quito npm...

EUVD-2025-178016

Malicious code in loop-quito-hyperion-centauri npm...

Malicious code in sqlite-oauth-quito-graphql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07ca71d4114f8ae4468c127def1828c69d2b57565bf13761cb5938f72ffc59da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189033 Malicious code in quasar-promise-kaus-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 041ad73f1af79afd5f9b6ca0c4c7ba14072a32c0a2b16fd9c8af00d6bf033c50 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in paleomagnetism-public-quito-redis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa0117eff0240cadd090b3d5d9d0e72ff394d66fc694fbac4b77dc2cdd423769 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-175845

Malicious code in ultra-html-webpack-plugin-zenith-quito npm...

Malicious code in loop-quito-hyperion-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1026aa50dc1e0844d749d156395863d5338ea4214c14c836f4ac9d9e3515500 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-179964

Malicious code in browserify-seismology-vega-quito npm...

EUVD-2025-178303

Malicious code in janus-radiant-avior-quito npm...

Malicious code in quito-cryovolcano-nightwatch-subscription (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01a24e9acd11ed85f87985112d1bd7cc1e77631e7593134f4b3a95d72977e303 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176240

Malicious code in sqlite-oauth-quito-graphql npm...

EUVD-2025-178933

Malicious code in fermion-geochronology-quito-janus npm...

EUVD-2025-178590

Malicious code in hawkingradiation-flare-hydrogeology-quito npm...

EUVD-2025-175740

Malicious code in vega-toml-hexo-quito npm...