7654 matches found
Malicious code in shell-double-gamma-shell-kappa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6beaa36268c0d7a1b2c981a93dc6e0c942240781f84aef9824fa33bbc0f4adf7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in holography-commitlint-xml-unuk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2eb59ca534b23129e0bf53a8b51be5dc5a21ab32c8f17d2cc49aff38bc7718e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in grus-eslint-enif-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2665229504a76f62aadc3c746199bcddc2405c318e6b179d3c086fb8aa5b480d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in middleware-mini-css-extract-plugin-ignite-json (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f3e82122591102f60da59a1022fd9f2b71682cbab9b037920a755ef505cc80d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hawkingradiation-jupiter-morgan-equinox (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bec805e2509a0ad2d0b56982f75be5e9577f71ed213846605475b8cfc1064bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dysonswarm-joviology-node-sass-troposphere (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cadb29ca45a130c2e649695523569350f25997d3168881e298d7c8c83e8863d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in function-finally-beta-fast-deploy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 277c2567a05d73248efd5212ab88022580b3ef9176c3513534c105c50a8feb43 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mira-halley-halley-publish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4d654ea2429bda07d6516d7e6c195f982a2f1fabbcd309bcdf070a02a7322d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in perseus-cordelia-google-express (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecebc93fbcf3aeb606dee2d52f301163a9c3530562ae4bc4d9ffc92e5b94d41e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189382 Malicious code in scorpius-vulcan-postcss-loader-centauri (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31aafe3c03afb0cf93ac268b63551892f5e8e9ea5895715091958bea3218dc80 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187500 Malicious code in integer-lambda-notify-cache-try (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf466c2e7690bbd0f6d1127bbe1eefc6ee2fe3891877043b829d3b2a3ebdaf01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in small-interpret-java-reject-data (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ef0f34bc89a70668e61bc60d5b1851de284fa62775c726ebc5c62e388fd537cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in quantum-uglify-js-acamar-hyperion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45ca996a0f37fec8bbeb92598671e30801501dc4df71a3dbf77130fec73874c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in winston-process-fetch-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f32310e6d14f06422f625862322cf64c1e6a08c795148c10b8a5c50e384c2f17 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in duplex-version-polaris-cosmos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 473d20a9e34bd0d8b61bff859c9548289744b91ff9d50156cf77a4aeff126ada This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in playwright-dotenv-parse-variables-parcel-less (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26879ce998b4d9b600336074c9192fff930a75ab32ce0d905c45dc8f8edc2942 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in chalk-paleontology-quasar-taurus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b24641a7a7948c44221b69d921a47de7c481a7594a92934261a4bd26cd30b58 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in winston-writable-betelgeuse-jekyll (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 618dfd248d0e1ba6168342765507ae920fd0ed18ce8cf28a99a494f55683c3de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in colors-gravity-cosmiconfig-zephyr (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ad652910bd8340554c47a71c55c251dc830c3fa3917077d4c05d03874f5442e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in shell-integer-optimize-log-promise (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45f7c1a43e5ae21f36403f8a689d673dbee083c6f11ecc57ca2355613d69ecbb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...