2340 matches found
MAL-2025-142935 Malicious code in global-fornax-supervisor-react-bootstrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0acf146c879312a52c4a11dfd8019469b166ba992f23e25b1a184a8024ba6b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115984
Malicious code in bootstrap-rate-limiter-prettier-stylelint-transport npm...
EUVD-2025-115979
Malicious code in bootstrap-terser-webpack-plugin-winston-link npm...
EUVD-2025-115977
Malicious code in bootstrap-wezen-selenium-configstore npm...
EUVD-2025-116834
Malicious code in aldebaran-bootstrap-mensa-graphql npm...
EUVD-2025-121009
Malicious code in umbra-fomalhaut-cypress-bootstrap npm...
MAL-2025-147054 Malicious code in react-bootstrap-docusaurus-release-it-wasat (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0995fe21961efede9dd77ca581d5867b77e1a82321014f9343117b49c54685e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147536 Malicious code in rollup-taurus-antd-bootstrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fc7f09a8172a6f84dff3f36916e21a8732e1de7d29a1a4fa802a450bcc89c74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140120 Malicious code in bootstrap-shelljs-enif-cassini (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f5d6bce3ea521ea3b8fa5d1f0d8d3c503d7a97fd2f7dc25e2a87d579491600c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in carpo-subscription-meteor-bootstrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68e1b684d15ee19482333f05c05b48bae9abca8e7d4913b38c3f1a54225c489c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147071 Malicious code in react-bootstrap-polaris-prompts-duplex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70ab5c4a923aa2e466ecbc96e0eac3c8a5009b0e4895c85f60cfa56187d7f5e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bootstrap-playwright-levels-browserify (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecb9f73fa8fd1876ce64591a40e51714d01023c2754d029bd29814b32c7c621a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148159 Malicious code in spica-cypress-barnard-bootstrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6102adc00966ba285ca48a5b0c9ef6bedbd9b1c15e55c5c56f7a6b132206d191 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140541 Malicious code in centaurus-bootstrap-callback-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7969750400aaf0b8947f7695420d28f460891a0d6b84261f1405f84b7010400 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140113 Malicious code in bootstrap-link-pino-pretty-betelgeuse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3b1ad1f4bd0a9eea1be9a5facc0abeb0284827a5e7994ce9dea62af1df74e75 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-113611
Malicious code in firebase-io-webdriverio-react-bootstrap npm...
EUVD-2025-111917
Malicious code in koa-module-bootstrap-spica npm...
Malicious code in spectron-bootstrap-yaml-iota (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3f56029d7ba08a16d0e0186ed582f9e0eee3faf4dd11a94341de93ca17195cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143029 Malicious code in gravity-react-bootstrap-commitlint-dynamo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb22033e71a11b9b4e5ea920eae840ead86fee21e944aa895a89667612aee75e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146314 Malicious code in pm2-sync-convict-react-bootstrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1330108cc41fc5f8b16b97bd8b44613ea9687f6d108f9fb4aac46e264b7302b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...