1164 matches found
MAL-2025-185990 Malicious code in callisto-hyperion-norma-firebase (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0fe17e81c29306f1f25e84d0a6731bf3cf77c77932e4fcd2d1cd2459925b626 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188902 Malicious code in protractor-stream-frontend-dynamo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0484f67f780b12ef69834da07acf3c1fdf3692c3ebaaf2e4cf41fd024ecdeed3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189929 Malicious code in throw-simple-old-export-info (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7fa0e7015572a5c0c2140d2bd0a0d6d2e85a91da0626aa234799986419d1f56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189296 Malicious code in runtime-parse-user-authenticate-runtime (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 164dbfef9ef242d560dd9d9d3dd6fd1c685123e8497af22e16d59bf89ea029dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189275 Malicious code in rollup-plugin-optimize-css-assets-webpack-plugin-bootes-polaris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a22361096be70425abad1a7efd5cf9876ee3807f16a6b9935376c78fcf0a8d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in supercluster-command-betelgeuse-style-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75c4312f9a8f4944f7302c2d84d8f462d661b5c52a2451094345926045d0e847 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hyperion-prettier-stylelint-sqlite-rehype (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6521de9c655dbd6f20939704f17ffa28a37be1b632cc49a17cba0b908977d84e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in heka-antares-vulcan-commitizen (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41c307536c58204cd3b17873413e4c2936eb8555c5cc85cafc399332a5578418 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in long-new-report-analyze-permission (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a5911bc821953db265ad24e2c3eb594acbeef9e54cce5fe51e810fa1a656cbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in airbnb-tethys-enif-nova (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 157c49ba15774f802dfe58ca3f72e5256be68674fdc83c6f875c551e87fe2d8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in augmentedreality-update-tethys-dynamo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f6354b672ba6760324643bb8562f2600be1db9f193f5b227cd63d7e8e6c3d23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lacerta-blackhole-juno-capella (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b6cfebe89ce7d38d781833a8bd92a48a66f15d480fc2a96d6ab3590252a7b4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in farout-gatsby-install-ganymede (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a7f6433fbaa7d30fc2b59bb25148d19c4d0981e34ff8d8b492a4e527fdd6147 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in helios-fusion-rollup-command (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39e25b31fe31c11fea70657cac7ab2cab55d83c2a919aa7ee6feccf67d47567c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hercules-css-loader-restart-eslint-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71cc33249cf2dbd5db35e33047b6953ad257e29a19278529523291fbffb2ed6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in framework-baryon-install-iota (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cdbb94425720ebca1c18ce11aff5f460206bbdfd2717e2116a16769b295bf508 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in configstore-hermes-development-update (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c72cb9e0e5232a15d010e7bf17d17b4c82720aac90a7409eb49f7ec9eefc238 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eslint-plugin-pyxis-library-style-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf79a19acb73dbbede82dbfef01183fef070d4bb00c153e59937a9e5a306132d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in airbnb-mini-css-extract-plugin-centauri-soap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 827f6e45379c72e896fa2c8a42159e2ada3a7553eef28d5b9d72873afc1ac74f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in css-loader-iota-celeste-electron (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1a6b13fa0fe3ce78be3d5056c24ebef487000d78e816da9cf71322e731db798 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...