MAL-2025-142155 Malicious code in eridanus-shelljs-oberon-epimetheus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aedf7fcac32902d42c53e87e4ae9c10496ac0ed93504a0123a0f2c6475eb893d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in levels-npm-yaml-xanadu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa37b47332dae889eb886aef463cd255b9f8cdd61f08346e076667848f360354 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in uninstall-zephyr-publish-aether (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b931f7d82bdf49c8bd7009b6500a4b5e18fbc27af224965bbe9a5312f8102958 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145024 Malicious code in miranda-capella-electron-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a770aaa8b309314468c5271d2a10869434f06988c03f942917f434b7c866c081 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149263 Malicious code in warp-callisto-library-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30970dd99405b0fed1c24b38ff81cc49d20d1d6fa08cc6823785173984de12cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140590 Malicious code in chai-fomalhaut-private-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 781047d4551dc9d1deb64ba4272f99d47e9ca836fd15539dad0480398af18e68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vega-css-loader-json-mensa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9ed9e0c56378cf0db01dbf06e8ed7f5f59821afc593e4fc9501eefb82615d14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141354 Malicious code in csv-pulsar-hexo-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f7aa4dbfbc4d37f3551bab23b708a86c043fba750ff0f018e4c7625657c948c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in semantic-release-process-alphard-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2909c41dac1a109495cf0ea2e8cb4d523c9f422cf2ee0ae5cd922904f1122860 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146956 Malicious code in quasar-neptune-bootstrap-altair (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35c2d4a25ad02834502ae95a15e19af60e3ba226b2f42f69864e199afd47cc67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144514 Malicious code in loglevel-markdown-wolf-elektra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31beec34a4f56a2c17a4993afda0334fde1b331a350a2b875e59aa391ed9c172 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

IBM QRadar SIEM 安全漏洞

IBM QRadar SIEM is a solution from International Business Machines IBM that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user...

MAL-2025-135869 Malicious code in nurul-keraktelor23-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a76805e3d192e908da42935aa67471809f9f457508475c851599735cd4714c93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-138480 Malicious code in zaki-miebogor70-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcf34ce16de780368d0bad492c2c25e5c12fe9186a60946d14c3adedca8fa5bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in arif-martabak90-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e8bdd6807338074ded7b1abbfcbef1c6aa404489acfcb98f1931115a2990cb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nana-sate24-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 475214ce29dcfd2cc855342600de8652c7ed59eb08fb72296bbb7aa7b1fe6466 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-136442 Malicious code in putri-sambalado13-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf438f9e0063c45a71fd3e5aa5441f03ce98258e49bfb4b894507b43b819ca42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in joko-rujak35-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbe5b43f216ed40b9fca9bb2597ae74b21598967762d4d186c2566bef0b9df85 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-137308 Malicious code in tiara-ongol-ongol98-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b2edda9a38ee938f8a9f044354874d6ccef98ec8599525a1df00993a4ac69ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-134077 Malicious code in hanafi-lodeh26-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2113c05541b4268dcb623f5eaa203282870dc911a4dbf8689c8e921923819c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...