665 matches found
Malicious code in airbnb-transform-apollo-terser-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 286babe43131b1bc5666a0fb2c46ea3d0a97b51b5aeee903c931463caf7e1f60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-116838
Malicious code in airbnb-transform-apollo-terser-webpack-plugin npm...
EUVD-2025-113973
Malicious code in equinox-terser-webpack-plugin-dione-html-webpack-plugin npm...
EUVD-2025-113633
Malicious code in figures-postgres-tailwindcss-css-minimizer-webpack-plugin npm...
EUVD-2025-121969
Malicious code in sirius-html-webpack-plugin-izar-europa npm...
MAL-2025-147094 Malicious code in readable-xanadu-zenobia-css-minimizer-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cc92c96d3ca99d6166dcc1bfdf45c8e4a21ea3ca0e602f88717aebed70a8c03 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141611 Malicious code in despina-winston-optimize-css-assets-webpack-plugin-ganymede (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0e0f37ee094b8b166260740fe127d4299bc7ca81d422620f1610734025e8e2f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-116279
Malicious code in axios-css-minimizer-webpack-plugin-bulma-helios npm...
EUVD-2025-114780
Malicious code in css-minimizer-webpack-plugin-meissa-shelljs-tailwindcss npm...
MAL-2025-141243 Malicious code in cressida-sequelize-wolf-terser-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5a46a9c2846a091e28a3a4dc8c51bc71bdde5de64a5745a8b0b0b66988ee9a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144388 Malicious code in library-quasar-andromeda-terser-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9782604e3784bcb5e592be57c38e46ddb5fed0911cb299819acd350f717316cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149507 Malicious code in winston-magellan-miranda-terser-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71ee01189845db7aa342e79e837373263b111cf89d61884466e815592205e5d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147002 Malicious code in quito-request-karma-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c90bb0614863aef8fa9c825f50394f601085ce72fe96a6c0d37ac4d097153fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145489 Malicious code in nightwatch-terser-webpack-plugin-auth-callisto (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8330b970ea27a9a8326babaa86a72618b895c2a775a610dbb6a8d80ff93ff11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in terser-webpack-plugin-csv-transform-native (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea2dba0f2f9be6ad4f163dc677a2d1d35025a99545cda5729227a326971c4bc4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in proxima-terser-webpack-plugin-materialize-rollup (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 748d8b8f64af29685a4cf4a2b52fcbb9c4ab81bedee9b428c9ebbc145e83538d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postcss-loader-css-minimizer-webpack-plugin-achernar-barnard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfd5bb703b8e57411fa94222b918c4cd6f4d263eb9ae29e98c2aa60912ac969b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-113914
Malicious code in eslint-config-cygnus-mocha-optimize-css-assets-webpack-plugin npm...
EUVD-2025-124056
Malicious code in optimize-css-assets-webpack-plugin-magellan-grus-unuk npm...
EUVD-2025-121383
Malicious code in terser-webpack-plugin-csv-transform-native npm...