4402 matches found
MAL-2025-148468 Malicious code in taurus-exec-javascript-repository (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cdedd5376e6fe1861b11be01534bfda0c690e573d66adc4218268940bdf545eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146262 Malicious code in pipe-dynamo-nodejs-stream (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa9dac7feb2c94e2e98f30abb6178870ede5b7ff4102a2d06705e6c6e7f5490b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146913 Malicious code in quantum-promise-phoenix-nodejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83997c7f595e58fc0c9df6d3ab102a43b0ac4c98f777de56bcb403d0b92d078a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145572 Malicious code in nodejs-mongoose-dotenv-mongoose (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c38ef3e18883f3950ca328b732c4c2367c7cab4f3dc2bd8ab24f4775d51cc21 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145560 Malicious code in nodejs-cygnus-sync-markdown-pdf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83ce14a4ddd7e7d11d764543dc23faf3d5934fb6001941a7c607b55b5975b389 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141478 Malicious code in dagda-nodejs-magellan-mysql (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 792a64ac652bb6ab18229a861d7f5b30e92db6d2015ab8974b4e844b2e63c799 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148720 Malicious code in toml-nodejs-spinner-uglify-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39b665158c37110255c5be34bbe5ad2da8289d225777f4daeed830c7f915a5d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141247 Malicious code in cressida-vuepress-nconf-xml (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b3fad2a7701e8e70e72d43cee4ad37b3a44e2bbbc521f2696eaf92805c68b54 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146533 Malicious code in private-halley-nodejs-subscription (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89a15a54cc1eb0ce2d148b3ff7677e250f4387a0900f4a6bdb4e0858a664f377 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143133 Malicious code in halley-cosmiconfig-nodejs-ganymede (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06dade96fb0e2431b0716ce1e1641fac7e05a2a2cad951c5e33772fc3cec2128 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145577 Malicious code in nodejs-relay-rest-deneb (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7eebe4eaebfa21765d31bb1cc219e53682e79a49f3b933f65fdcaeb12f33d106 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cheerful_frog_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3862849185c3397382414e8a070e3fdda67253d43642053348131e4460f8566 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in close_shrew_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6955629d35c426a0fdaee25339af0cbc2577b6bbd068de90a76214ddb0b115f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-103138
Malicious code in optimisticcarpz3n npm...
MAL-2025-131706 Malicious code in zain-lapis65-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 956d7ba7c23ac352f0de3cc9c1c67645105e9fae48151f3fb1fcc1f973e16029 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-105703
Malicious code in drivingplatypusz3n npm...
EUVD-2025-88652
Malicious code in stripedflyingfishz3n npm...
EUVD-2025-87948
Malicious code in vocationalcarpz3n npm...
EUVD-2025-89599
Malicious code in oktafian-rujak95-miaww npm...
EUVD-2025-89505
Malicious code in patria-semur81-miaww npm...