8520 matches found
Malicious code in tectonophysics-transform-crust-sagitta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 362c7a3c2a387c1b0b23c2ad16e0ff6e12215ac224b7fe3f752d831110cf1fcd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187306 Malicious code in heka-mdx-kaus-indus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 272c8eefdcedd52dab7dc0dd7eef12e6f770658cedcd0d14ba9ec787e9ad9cb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in perseus-lyra-css-minimizer-webpack-plugin-loop (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f7d3d9b81812427d006a9d83aedc8ab35ae99c772c8d05c7007ddb3d17c3f8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188923 Malicious code in proxy-cache-beta-iota-water (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62ea476eadee6f737a5d5939604779845fb47a080e38fec660f39ad6b1e818e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in delphinus-run-script-deneb-query (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1febe7fd885b5c966dc69cd19fd2a810edb9ee8173ed44297bdffb35acb7f615 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190451 Malicious code in zenobia-grus-readable-semantic-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf7f6afeae699f004a49669c40ec942ea5468412b503aebc4ef6a6dd68995578 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mira-pegasus-helios-command (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 422ee9120420e94cb81c3c676cad475d315c805d919357d1d22ec34494a7a034 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nebula-lyra-astrophysics-backend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87731194882f0a9904a010dc5c887ceff5fea966c6f645da196e94537a27f879 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-commitlint-lynx-public (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb7d81eb99a4b615630e9110e9e4e09cc3bdc9fe3ab07efd0d8b6117778b75e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in express-proxima-websockets-leda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ee0a304fa501650f89077e1daec98bbd0bb5ef6a4cceac9cecb13c6ac45490f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cross-env-atlas-non-blocking-eslint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c136167139e7da8f2dfa597abcb7ee932a4d5968c1f94382ea87cc5b9e43128d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in terraforming-astro-virgo-toml (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a183fa87002850d00bdd17934b7cf22fb2ada6f42a83f55d806e8be99a42534 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in concurrently-scripts-plutology-nightmare (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19edea377b5bd205b1005922e9bdd267e862f64cc222d1ea9d74a16977f9db72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in uglify-zeta-tree-delta-runtime (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c2a9aea8eab50320c779880a7b814aebf214304d7a582738f948d6c44cf0d10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in google-radiant-weywot-rocket (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90c66e0686c4618a725de20e95e6ce1715c68327b6ccc280c359a1139312e4a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in enum-small-tau-sun-orchestrate (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8590cf5441e83e5a96bcfa4a8cc7c6a41a36b4151991061636a57ca05f6f9de7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in markdown-pdf-mdx-build-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed5368d721e6688cca2df4ecc49dce2acefe3054c59f7825db20785e9cf725a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gemini-gravity-xanadu-css-minimizer-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ef8b0e335c02e9e3202c8e0195d3bfd55501baef7ef0af424b6b5b8eb2310c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in scale-deploy-pi-simulate-load (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52fa017a28d30b614ee50a0a757c91fb23576c9b1ed146e6df71f8e508078a72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cold-phi-cloud-cluster-private (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f0e9984087d6fc6265ee22bf94590da86323c7d97b5205d237579d0a5556bf1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...