EUVD-2025-124556

Malicious code in neptune-html-webpack-plugin-subscription-typeorm npm...

EUVD-2025-120544

Malicious code in webdriverio-telesto-equinox-html-webpack-plugin npm...

EUVD-2025-112756

Malicious code in html-webpack-plugin-astro-blitz-procyon npm...

EUVD-2025-123405

Malicious code in prettier-stylelint-sails-eridanus-html-webpack-plugin npm...

EUVD-2025-114281

Malicious code in dynamo-kronos-loop-html-webpack-plugin npm...

EUVD-2025-123297

Malicious code in procyon-wezen-html-webpack-plugin-wezen npm...

EUVD-2025-123327

Malicious code in procyon-html-webpack-plugin-nodemon-phoebe npm...

MAL-2025-144913 Malicious code in meteor-html-webpack-plugin-mui-selenium (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2ba44be2ccd673c3f19ceb7a542f761f31250400b8f3caa7ffa5327a7e58323 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148554 Malicious code in terser-webpack-plugin-lint-toml-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f154561b1e2ab5853761f1ac96534b4e5e5ec7bf8e7e8fe50bdc44f46703bde2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-120739

Malicious code in vortex-request-websockets-html-webpack-plugin npm...

EUVD-2025-123572

Malicious code in polaris-jabbah-hermes-css-minimizer-webpack-plugin npm...

MAL-2025-147504 Malicious code in rollup-nightmare-nodejs-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 013d8c46a1af7deb1ec86ef06930fca85b4c0bc9fa04823847913c05b0e6d62f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141602 Malicious code in despina-octans-metalsmith-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9384bbb9fc0aa0e1f16a71cc9464392c53182e411ef298e21246033a29d53347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145355 Malicious code in neptune-chalk-html-webpack-plugin-virgo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69cd6f6bed9776d6240e81efcaf980f3e86f7f36bdacffd76d292c2d9397deee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-120423

Malicious code in winston-magellan-miranda-terser-webpack-plugin npm...

EUVD-2025-114866

Malicious code in cressida-sequelize-wolf-terser-webpack-plugin npm...

EUVD-2025-112542

Malicious code in indus-optimize-css-assets-webpack-plugin-antd-quasar npm...

EUVD-2025-121377

Malicious code in terser-webpack-plugin-fork-dynamo-spectron-webdriver npm...

EUVD-2025-114783

Malicious code in css-minimizer-webpack-plugin-ganymede-quark-yaml npm...

EUVD-2025-115432

Malicious code in changelog-optimize-css-assets-webpack-plugin-leda-passport npm...