223 matches found
EUVD-2025-179033
Malicious code in eslint-plugin-semantic-release-chalk-fusion npm...
Malicious code in vulcan-semantic-release-pino-adonis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c72d9e409094829214238543e07bf97ca0de11f012ae732f970551021eb40d66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in puppeteer-exobiology-semantic-release-less (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 492b2388e50d217d03a5e5f9711d814fffbd1724cb17c2b745d1d05ed86fbe9d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177656
Malicious code in neptune-redshift-semantic-release-xml npm...
EUVD-2025-176284
Malicious code in solis-semantic-release-pm2-css-minimizer-webpack-plugin npm...
EUVD-2025-177340
Malicious code in palynology-semantic-release-pulsar-wormhole npm...
EUVD-2025-176436
Malicious code in semantic-release-boson-lepton-kastra npm...
EUVD-2025-175387
Malicious code in zooarchaeology-nodemon-semantic-release-backend npm...
MAL-2025-190209 Malicious code in vulcan-semantic-release-pino-adonis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c72d9e409094829214238543e07bf97ca0de11f012ae732f970551021eb40d66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189438 Malicious code in semantic-release-aether-buffer-concurrently (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ef5dd537b321d8fe283fd48cc1202163ccbfdacb0405c484311db90efcf6451 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-116710
Malicious code in antares-auth-thuban-semantic-release npm...
Malicious code in cors-semantic-release-sagitta-registry (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7555f2b8b283d0f1b33880c0aec348d71a94b6f520787045d49a43d4ead12f36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-120667
Malicious code in warp-build-postcss-loader-semantic-release npm...
EUVD-2025-111168
Malicious code in middleware-barnard-update-semantic-release npm...
EUVD-2025-113785
Malicious code in event-spica-gridsome-semantic-release npm...
EUVD-2025-122084
Malicious code in semantic-release-update-kronos-rest npm...
EUVD-2025-113766
Malicious code in exec-indus-quark-semantic-release npm...
EUVD-2025-120255
Malicious code in xenos-framework-semantic-release-query npm...
EUVD-2025-122095
Malicious code in semantic-release-impulse-taurus-standard npm...
Malicious code in husky-semantic-release-zenith-iota (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87639580b2295d715793808bd79c4df8d0369be6ec95e23142965473ebf761f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...