665 matches found
Malicious code in warp-avior-html-webpack-plugin-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b11f9b6bfc7e569e71fb19a7e5a3323ecd22de9a47e30dbccd610e408eebd4c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-116868
Malicious code in aether-mysql-eslint-config-html-webpack-plugin npm...
EUVD-2025-111785
Malicious code in less-loader-quantum-miranda-html-webpack-plugin npm...
EUVD-2025-114507
Malicious code in despina-octans-metalsmith-html-webpack-plugin npm...
EUVD-2025-124047
Malicious code in optimize-css-assets-webpack-plugin-yildun-hugo-nova npm...
EUVD-2025-121371
Malicious code in terser-webpack-plugin-mutation-mutation-unuk npm...
MAL-2025-141828 Malicious code in dynamo-kronos-loop-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1facc111643156c60818083a3221391ae68c90805f74a1411946c0be5cc3821 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145874 Malicious code in optimize-css-assets-webpack-plugin-yildun-hugo-nova (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d40cca4431ebe10a20e76cb02d720527955bc8358a7289cd5744c41ee9d29c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148548 Malicious code in terser-webpack-plugin-eslint-config-nightmare-native (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83514a209e4c2489491a7e5fa3f9da4da2466d832fb191284eac4fbc6f3b5ee6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142838 Malicious code in gatsby-css-minimizer-webpack-plugin-kinetic-aldebaran (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd3d7c7613ca3b24203a1a6b67a092b1b7c05ab67e78b886ed6158382f56e95f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149190 Malicious code in vortex-request-websockets-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d27d80aa80b3476f8aacf646ef4d6f99528afde9c24988a8d62218931ed277a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143399 Malicious code in hugo-sedna-element-ui-css-minimizer-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8cbb809a5a462eecb562ebf259496a3417030ea7068dd248d7c76664b049056 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-116472
Malicious code in async-nightwatch-auriga-html-webpack-plugin npm...
MAL-2025-143370 Malicious code in html-webpack-plugin-rigel-heka-gemini (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ccda5bca647ef2a6a8e7663d0c52c518824ee0fdb312fe1320b093bfdd154c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140301 Malicious code in callback-optimize-css-assets-webpack-plugin-indus-markdown (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d2c7bc08e32678dbc7a5f4c90b7c8e47cbb9d8fb461d41c5454e9bcc13d054b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143375 Malicious code in html-webpack-plugin-upgrade-remark-enceladus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59399cefad893f72472df77482546ff2e4acbd7f3456d03c6d07554edc9eab8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143358 Malicious code in html-webpack-plugin-csrf-link-changelog (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 922ca18a44731d301d1740519b17256d39a472601f460a03933bf194565d2642 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143361 Malicious code in html-webpack-plugin-epimetheus-unuk-configstore (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4595fc39029695b5e775853582dcc5e971b35efa3e6235ac100e5585e1213d49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143739 Malicious code in iota-publish-farout-terser-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5af19c1d6f08e7ef2fd2f4ffea93902babce362354f088e98f6484d66559a40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123238
Malicious code in protractor-europa-elektra-html-webpack-plugin npm...