1202 matches found
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Malicious code in web-route-final-nu-route (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a5c7be5f1d5e20af05a8a41845cf88aa11d49fe80adadaa957e21395a29b1a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in final-dog-throw-resolve-short (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23c2397efc5859b1076b97685efe63f23c65d3a4a53c6aa6861d363cb5b8cbb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188000 Malicious code in meta-load-thread-grep-decompress (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 109caf8ad26be27a56c9b5d71584ee315b90d7198b132c76436f93ddeb1a2f10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186753 Malicious code in enif-terser-webpack-plugin-sass-loader-spectron-webdriver (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a30834a5fbe857adb14874de5f845460556c9a36ba75d7c2eee5f917aa980bd1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188960 Malicious code in publish-vuepress-sails-foundation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8174eba67733225bc2a363540d7f5712c22849add86bbb13c447eb8e2266a409 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189804 Malicious code in taphonomy-commitlint-kardashevscale-loglevel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 695ffb95ebfbe4a2099875c019ec792a3a780ee83517b91b3a5b79d3f44c0036 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186315 Malicious code in coronalmassejection-terser-zooarchaeology-telesto (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f17a3906bd4a11e984c0df47d8cc68a8a7f61cd950e0a6de37029a1ce951b7f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188362 Malicious code in npm-global-sublimation-augmentedreality (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ddd49961f0d54ac7944b8c564af29d8e2be7f5aab114048fc3a52eaad56e34ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185463 Malicious code in antares-bunyan-apollo-deimos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2c64bc39e1aa26b38456721f22e94693806377129dbac49a767a3dbeb61f372 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in apollo-xo-bulma-radiant (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d53fa6d63360ec3de4a80b2c87d0ef1b1c8be878f55db4510f568325a0e0271 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cat-void-bash-cache-bundle (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 778f07c6825f30529d578e5e0b9222d362189c07821fd7aac30de9ef4b174d12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in wasat-photon-await-mocha (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9928a8be2e63151c5a44872a4540168eb5702dc997d95293ab99824e30466315 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in centaurus-quasar-module-rimraf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a29e050252b3c774ca548dd99315e0f8c4a20a46b58ff9253a699a09e756ea1d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...