460 matches found
MAL-2025-187261 Malicious code in hadron-vuetify-astrophysics-prompts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a023aa918b6df89cf02b3fb9cbff1e261dbb97330b127160a907246a48e94bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in blitz-nuxtjs-cosmicray-paleoceanography (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e4cd9862b70a1a45035e499259dbaaddd1fe11073d087794c76495eca9f7215 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188153 Malicious code in mutation-dotenv-leda-crust (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86e570963bb062fbe8ee0fcd2d824c2439b265e90e824a4f45dbfd0dc83ee61f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189412 Malicious code in sedna-jest-init-delphinus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25e29146ae9ff359dd96b1cd1b095636278686695d62974a2d5867e6a74edcff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sun-thread-monitor-void-sun (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 047adcabcc874fbcf09307af5ef5c1dacf009d157f5e7e349936d9bae83a1fc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pino-pretty-kuiperbelt-vulcan-hugo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d01b3bf19da8542bfc975fdfb7a80d55b99366b0702f190de1439f1a90fa5fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in subscription-nightmare-nightmare-webdriver-manager (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a7cc33633fdcb71ad9cde74bf5f286e45a3fc893122e6cba8a51fd7ffdfec5a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in run-script-juno-supernova-commitlint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28d5416570aa5bf98628db20b38d6aa688ee1a11743013f75bbbf34b033fb219 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in container-encrypt-kappa-virtualize-old (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f797b4a9f89f991872b9512b2adfc5ff57180b4e3a26fdb86bc508e15a96a1b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in solis-perseus-bootstrap-nebula (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66b8d59746c8916f2d0e0aa816776331f332804015a10f708950338801106be5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ophiuchus-callisto-semantic-ui-lynx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d65af75f6acff48d55a94e31741a5da41d9e26f8b607169d254ab4d96271cb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in warn-pi-visualize-catch-slow (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd19017ae32cc4971e46154fbd9e20fc1d6dd2eb27e09eefcee04c2372bf184 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postcss-loader-oscillation-supervisor-stratigraphy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24c4ee8a47b6f72647c164486538c1d1765edb3e08b84f85ff8f0e12991b0634 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in archaeometry-rollup-plugin-astro-install (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1dcfdaa9a4222852d826a3e0212b6a3584a79729124a8ff9ee1178222bb3de18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in balance-dog-throw-balance-daemon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8e2cf175dfcb256e4e04e8d82f344e971002226d736740c3e3050cf4aef44a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189417 Malicious code in sedna-request-dysonswarm-enif (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe1b03cec1c5daf993196232116f24865c643b035dc6a9255cf8d2656074c012 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189896 Malicious code in testcafe-jsonp-lyra-antd (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 304cb8c0a4bc6028d7409abd3438dd2e2e32758c808c2e52ddc9c45829b586ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186592 Malicious code in docusaurus-callback-abiogenesis-mesosphere (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42bd97b8e1ec351f3c30094833234126ca837fa785a420b0c9ef4ae12a84d81f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185731 Malicious code in bad-eta-encrypt-error-signal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1430a541231c581ecaecf6111ee0646d539ec2f560fe6401ba786567cbe1eef2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186972 Malicious code in filament-tethys-brane-upgrade (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd79b06d69f04ea8b0388bfa6ca124a65859009529152dcd4cb8413e3089e76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...