1757 matches found
Malicious code in husky-bulma-nebula-concurrently (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 029de86705f76c06a577e00966fac5cdab3d36021be7d50cec1844bd03f7b785 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in xi-minify-bundle-sigma-query (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0d9afe7d7141055c0838ad1a3d5294b15a110475b4a168a1ba8da29c0f3f468 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186076 Malicious code in chai-gatsby-coronalmassejection-nuxtjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1965265a6fd3542b543b488677095044706c61ca1aff9178346019531c500d8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188501 Malicious code in paleobotany-nightwatch-epimetheus-spectroscopy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cae70f0bfb1be3f0979973d806c8c3f2e10038776a5df86823b05868b76e4d20 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188516 Malicious code in paleoclimatology-paleoanthropology-supercluster-proxima (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 114299ae42480cd8cb10431aece2c344ccac5007ab717c6b1ce22ddd17a28a82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187141 Malicious code in gemini-joviology-sedimentology-buffer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95136669cd1e8b6d87622527db48cc78b70658c9ac9f9516faa74e882d1300a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in upgrade-quantum-computing-eslint-plugin-areology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65f24884b7f8123dd633e86819d246df7e79be71c3680536de53b2cdce89ba5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in local-terser-postcss-loader-eventhoriz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34b65bfa47dbfe04c6f4b072ca313e3d49adb15a955a7b43a2c1fe3e2dee460c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190478 Malicious code in zeta-cold-notify-fire-easy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77229f2590e999b50f84151be215aed98544f5d472493de435539a1fb1794260 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in aldebaran-halley-eris-rollup-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ea1ee1c5006e870f575cd778508830625614ac4f6ee77b64e52cd1cf8e291c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in new-decode-process-orchestrate-balance (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45e27d28f9ad2788a67a1929e3d71bef664870e512e39baceef376995e2cc8eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in jasmine-metalsmith-schema-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a67d95657794543c0c975eb63112589e29b6bcfdff3feed460227a8b21843de3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cross-env-native-centaurus-dynamo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c6dce8f7485566682baf52e3ddd7d582e7a2d2645f17719277ec2beaf0b8c56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in taurus-deimos-package-toml (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fdb160245be134cc43b3db4192ef85905aace2254ef9e168298ee0cabe4239f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186609 Malicious code in dorado-norma-sequelize-hydrogeology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c5310268f12744e307ddeec31c9193e9e03f4c09638606993ade4b4ceae9989 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bad-transpile-xml-signal-cache (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98b31e71ed2a6d4bf88c6076c957111d72558e44d36bf8a63e906f6074f9624f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in changelog-gridsome-perseus-css-minimizer-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 133334c5bcc682926745fc752255a3c1e4da48e8c1e07925a14d0f505ea7526d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in virgo-arcturus-hydra-stream (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3200001e1e1fc337325316bb47953dad6b0ac3394eacacf5aa17ccdaacf52315 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in webdriver-manager-ethology-kastra-biotechnology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4d50f3fa880cc105429f154e2bc09e5b09429538db303307688c9609ca30e2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in commitlint-chalk-eclipse-init (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b08cb43ec4ac2e4a214da7f273798b819d8970ac0a947c0225b6f9a4d62c83b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...