EUVD-2025-179227

Malicious code in dynamo-run-script-jasmine-kuiperbelt npm...

EUVD-2025-179044

Malicious code in eslint-config-sirius-run-script-sublimation npm...

EUVD-2025-180430

Malicious code in antares-aether-run-script-pino-pretty npm...

EUVD-2025-180341

Malicious code in arcturus-nuxtjs-cordelia-run-script npm...

EUVD-2025-180339

Malicious code in arcturus-run-script-hydrogeology-gatsby npm...

EUVD-2025-179822

Malicious code in centaurus-browserify-run-script-interferometry npm...

MAL-2025-186529 Malicious code in delphinus-run-script-deneb-query (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1febe7fd885b5c966dc69cd19fd2a810edb9ee8173ed44297bdffb35acb7f615 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176760

Malicious code in redshift-run-script-chai-koa npm...

MAL-2025-187149 Malicious code in genomics-run-script-auth-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27853c93677fec2a5030fe143a9a6b4d812b32a1ed874a06ed9ea9f4580b5743 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185549 Malicious code in arcturus-run-script-hydrogeology-gatsby (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85308b7f547a69be0ec866ce936c922952149183b16feab778b8f5b68c64d58d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185458 Malicious code in antares-aether-run-script-pino-pretty (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c684055290ea8a0fb0bf121b028e590d03ce3cdc6373f64d5b9c922cdee2896 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141836 Malicious code in dynamo-run-script-nashira-markdownlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7361ddf24b24372d3f7d805c9eb58615f9f41cd1281ea692b6ebc64d1b3c543e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144131 Malicious code in kastra-run-script-firebase-blaze (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc401c10920d96d579d2722526875bac5f60943ac975fdf0410ecc87dc3389e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-121687

Malicious code in sqlite-run-script-transform-cordelia npm...

EUVD-2025-121645

Malicious code in start-run-script-sagitta-proxima npm...

EUVD-2025-121596

Malicious code in stream-run-script-got-morgan npm...

EUVD-2025-121264

Malicious code in thuban-run-script-callback-meteor npm...

EUVD-2025-121263

Malicious code in thuban-run-script-phoebe-phoebe npm...

EUVD-2025-122817

Malicious code in redis-izar-react-bootstrap-run-script npm...

EUVD-2025-122739

Malicious code in rehype-run-script-soap-process npm...