Malicious code in unfair-salmon-fish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e34b794d12c6beefa8a27caf7d73a74665ff4b2c5219f3a376e6b7c252a385f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-53018

Malicious code in normal-plum-fish npm...

EUVD-2025-54149

Malicious code in gay-olive-fish npm...

EUVD-2025-53594

Malicious code in known-lime-fish npm...

EUVD-2025-55172

Malicious code in convinced-orange-fish npm...

EUVD-2025-55059

Malicious code in current-coral-fish npm...

EUVD-2025-54840

Malicious code in disturbed-peach-fish npm...

EUVD-2025-54811

Malicious code in domestic-salmon-fish npm...

EUVD-2025-54801

Malicious code in double-gold-fish npm...

EUVD-2025-55875

Malicious code in amused-coffee-fish npm...

EUVD-2025-55487

Malicious code in chemical-aqua-fish npm...

MAL-2025-69055 Malicious code in known-lime-fish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 573cba47d4497d24a67d65a7d66be9acf1c72597dde8ac48fb9394f896958640 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67848 Malicious code in double-gold-fish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 711bd25f8fc5bca780120047ef3f3a39a0a2f866b3cdf354cd0d8208bca499e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in impressed_fish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e936fd8be67bfe204b027c7e8c22d9b0cbc247d4d6d8eb6e3fc47e632390a68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in prospective_fish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2d0bf72859019b89179fbb1cbfc5f946e90d09820d9da1540882923f9d87820 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-49572

Malicious code in prospectivefishz3n npm...

EUVD-2025-50538

Malicious code in comparablefishz3n npm...

EUVD-2025-50355

Malicious code in doubtfulfishz3n npm...

EUVD-2025-50019

Malicious code in impressedfishz3n npm...

MAL-2025-60314 Malicious code in doubtful_fish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2546e433aacb0041a7e5106849b8f31e07e49b6cf821c72eb03e528d1c269368 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...