3121 matches found
Malicious code in graphql-registry-sedna-configstore (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43426488caa65ceaf277ae33df4839e7ebc26fd723dca2280a380133248433ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in graphql-umbriel-enceladus-umbriel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95df253aa63bcd8287944401dcbc32701f552deeffcf87cb251266f1c84051c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in magellan-graphql-levels-inquirer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20526f5014eee97ee2e57fd6f52681ed6681877adc4ebeefb396c9d8ff23adea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pegasus-graphql-playwright-husky (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9485849dcf43ce232720e15f229be2925398be484ea117e2cc67c5e107784b5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postcss-atlas-graphql-spectron-webdriver (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2e1e09c839e7a8dd1bf2271918dfd6f0dffef915db2fca18e17edd957e22026 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in process-mysql-graphql-achernar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce30421baf221f5039852b56fa71beb90736340eb15021cdb3e1155efa5bad6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in promise-rimraf-supervisor-graphql (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59479e17cbe88afc81a1c8a65d70256bb17e84aa6391bdafb3acfc2ccd62424d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in stop-flare-graphql-webdriverio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39fd5efa47d0de28572480beb46c4b09366251f5981c1cbd75c0877711c8b1dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in thuban-graphql-backend-jupiter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9c95f79844ce145d2a3991132c10d022323b047eb69d35edbb4b4e3dfcc77f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in vulcan-graphql-sadr-leda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b28fd7869c1e84447ed5bb31e1a38bd35e970545d9af54c68a3ce47e58301765 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in webdriver-manager-dione-graphql-public (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c6fa48966204e7e4ec2f499960681d755ac463ce41b39eb2a6f9dc1921223fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-111140
Malicious code in mini-css-extract-plugin-graphql-karma-nodejs npm...
EUVD-2025-120615
Malicious code in webdriver-manager-dione-graphql-public npm...
EUVD-2025-113101
Malicious code in graphql-umbriel-enceladus-umbriel npm...
Malicious code in prettier-plugin-markdown-sails-process-graphql (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14cec4c47bf880dbc0312f699945952724a754541d14cd4729e60f73900dc187 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148075 Malicious code in solis-graphql-figures-mysql (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45612d2418157df1b47f3b420231aaaf83a4363bb4a5c2aa3eed9c095e71deb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in websockets-graphql-regulus-canopus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bbbda8427ea6dbb869b1b65944d6ea5190110070e68da12643f4631637ca0a0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in uninstall-inquirer-vega-graphql (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8846698d2269baaf706f6c548dd31f7d4b3192fef4ecf20829d9cc8bbac472a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-122120
Malicious code in selenium-hapi-graphql-convict npm...
EUVD-2025-121939
Malicious code in slides-graphql-markdown-pdf-dynamo npm...