665 matches found
EUVD-2025-112564
Malicious code in impulse-optimize-css-assets-webpack-plugin-hermes-sedna npm...
Malicious code in html-webpack-plugin-epimetheus-unuk-configstore (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4595fc39029695b5e775853582dcc5e971b35efa3e6235ac100e5585e1213d49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123595
Malicious code in polaris-betelgeuse-html-webpack-plugin-pm2 npm...
EUVD-2025-112254
Malicious code in jasmine-nuxtjs-terser-webpack-plugin-sirius npm...
EUVD-2025-112374
Malicious code in iota-publish-farout-terser-webpack-plugin npm...
Malicious code in node-sass-callisto-html-webpack-plugin-vulcan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 632da6973cf002bbdbdf9c84729d4558c7c645b572173e0b95bc2bcd2d28238c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in css-minimizer-webpack-plugin-comet-impulse-loop (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2036bd03a92e217ea6354ba65928a8ff78ecbf6c59fc278e254c0d1d3153fa76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in html-webpack-plugin-cache-spawn-jovian (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15fbaa78ca0f18a5e9ed1f2a13da754a46cc25dcf6e512c8966c3e4f105e78f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-112751
Malicious code in html-webpack-plugin-epimetheus-unuk-configstore npm...
EUVD-2025-124365
Malicious code in node-sass-vortex-achernar-terser-webpack-plugin npm...
EUVD-2025-114785
Malicious code in css-minimizer-webpack-plugin-docusaurus-react-bootstrap-dagda npm...
Malicious code in less-html-webpack-plugin-phoebe-neptune (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6233d66c6ce8a24ae4549b43abe8ec5046cc8b0a19973a0bf6447ca912d0408c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-111185
Malicious code in meteor-registry-html-webpack-plugin-gravity npm...
EUVD-2025-115102
Malicious code in concurrently-hexo-weywot-html-webpack-plugin npm...
EUVD-2025-113571
Malicious code in fomalhaut-gridsome-sagitta-html-webpack-plugin npm...
EUVD-2025-113274
Malicious code in gatsby-css-minimizer-webpack-plugin-kinetic-aldebaran npm...
Malicious code in release-it-optimize-css-assets-webpack-plugin-nextjs-development (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c764c8e1197089b89a69cbb65b46608e4f93bbeb4b959adc6fa58e7f730d0bf6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-121822
Malicious code in spawn-mira-canopus-optimize-css-assets-webpack-plugin npm...
MAL-2025-144913 Malicious code in meteor-html-webpack-plugin-mui-selenium (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2ba44be2ccd673c3f19ceb7a542f761f31250400b8f3caa7ffa5327a7e58323 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147504 Malicious code in rollup-nightmare-nodejs-terser-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 013d8c46a1af7deb1ec86ef06930fca85b4c0bc9fa04823847913c05b0e6d62f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...