853 matches found
MAL-2025-186771 Malicious code in envconfig-apollo-dependencies-update (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc6efee11ebc8382fbece0fc1803392ff0837ae4af2341841d4b417793e252fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189616 Malicious code in spectron-webdriver-nodemon-sedimentology-on (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60e790ec19781e6bae0e122b31564bb4f314ef39cee5af5b11865dd3d38e722a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in exosphere-innercore-radiant-cladistics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e5570fc4e3f2f9908698e3cb9b87896af167d7a106ca45f71acae469983a197 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in perseus-cosmogenic-spectron-webdriver-meissa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f58a08ce2390b39ba0775e86569c351f7f8c1ac7780c89872374334fa4a05289 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in technosignature-quark-quito-slides (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31b4042a3cb59a90e217d0c5be97bae397ae22e8022f27625c6ec1d06afecb8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in child-process-xenon-avior-perseus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9f4f073cd819427d81027c4347194f2093797d2605e1e90dbf83b1979f7d03c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in concurrently-scripts-plutology-nightmare (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19edea377b5bd205b1005922e9bdd267e862f64cc222d1ea9d74a16977f9db72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cryonics-publish-dactyl-pyxis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8e8225eeaac0b8916a2b89b7dcf39e7988138e6e430c4f6a4730306f251bdfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187244 Malicious code in grus-nodemon-rehype-hermes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6d559410a1d7d46410b0043f04df13062a94d3ab8a1f955226d05167489046f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185940 Malicious code in bundle-static-pipe-mu-float (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f641f6aa0764215f73a963c56b013c9e4bfd8f7faf47e0b43a01931c03383404 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in telesto-publish-oberon-charon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de6837a499af3bd764db78016d59ed3b3b1fe3f57a03f81847910a466b622002 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186804 Malicious code in eridanus-buffer-colors-passport (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ad0a6bb846c89ee43a940cc41820b10715f3ed75eab1b0d1947860b70767ccd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188158 Malicious code in mysql-cassini-unuk-middleware (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9073f9335c1be4ff425490df7e7f081f828afa71bed9769dd505b3c85f82688d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in solis-chakra-ui-comet-lint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c944e50187a88c0aa55f68b8a6f137dc34aa9a7e65fc342d26e2ab27158f1c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185576 Malicious code in assert-analyze-authorize-awk-eta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 22c630eccb84be45213459c6615f3f2e1a07d5142b357a8e728754031a1209dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in authorize-signal-report-omicron-decode (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48d8ba11d8a4a4607c7f53061d2de0abe671593a7676068b13d46e6f8fbbcc09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eslint-plugin-eslint-sails-membrane (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d9c8ddb23f24da56881beee4ee5fa6011c178ea702b512177758630c0ecfceb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in telesto-spectron-sagitta-soap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bc2280be1e963104556f516b30bcb43fa58ce27dd58b684163c89f1da636b6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fomalhaut-ora-cybernetics-publish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9964b1a5f5727aa60a83b521fded36b2099112209577c7f81b7be40560c99fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in quantum-pegasus-winston-blitz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67fb1c058e5116640414a75f741d609712e320816ee67dfe77952386a9db1222 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...