13598 matches found
Malicious code in callback-adonis-native-ophiuchus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc6b2adb2024fc786ab7d03d9c9e3da8107a9c830bea338dd0148d6b47c1e442 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149503 Malicious code in winston-jwt-sails-polaris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deb006c2b2793dbbcbe5f7a7f5b52c5850abecd1b69042e481b38dc15078b81b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in colors-corvus-postgres-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2eb7eafb397099447d7894757e36ecfbe2dfe1fc171de2c28d818bd4b75bfaa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140959 Malicious code in commitlint-config-angular-commitlint-config-angular-solis-cordelia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bb3f567bb082a9917a4e38dbb29310a4010b6d8c0b2d6a2016a2ee5698ad2f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in procyon-transport-antares-readable (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0dd5e963ca95be4d275776c26fe8bbf0e69bad83e16e6477c525e3b11082bb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142160 Malicious code in eridanus-xenos-publish-json (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecf0532d7b2c3c520a6ae1abdb5fdc83cecaf382167e69ac9936bdd4415c8930 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145403 Malicious code in nestjs-react-bootstrap-dagda-geckodriver (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ab8f182e93ed124506286a8c5600abd6e108c7e992000981c8c480610039da7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143551 Malicious code in impulse-protractor-registry-reveal-md (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc758536957a4caa16d0eefa107b1b83f74c68889d645806646193e06f5913f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143069 Malicious code in grunt-prettier-chromedriver-husky (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c23644cb4dbe3d6725f5ea83a20e4ec4b24fc724d6f4b8fa491da874661a1dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141286 Malicious code in csrf-init-apollo-hyperion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e2421d0af6b38ba2ed5dbe7b3622fe8083344c0337a52128c9a27540b87483f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nightmare-ursa-non-blocking-subscription (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed89bfdd8b3aa3d1c2842ac2f5b9491ba021c343e251df6144e233f0bee20006 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in oberon-redis-luna-passport (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a7dc99789c6a0bc0bffec45b88cad0cdbd527b9612b08e1c1088d1d9fa367c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in deimos-alphard-nestjs-oberon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb2a1db44cbf758c023fddc4953d43953b89647c6ce1a2f527ecdd091804b012 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in io-pino-pretty-start-ultra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7227feb91a808715799e857158fe7571b0a692dc72fd0f919c3b346390daddc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in jest-forever-adonis-orbit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c39d466745ad211662ad71e05f6430482e9219000c7fff7777119024dc32f19d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pm2-algol-flare-jekyll (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99d16774e2cee4ea961f6c348bf4e92a499bdf16408452f147c123b2cd2506eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in readable-astro-npm-prompts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c647e05dd037905883f77cef6440b9ac81382f0ede90b58ede2e43bfc6a99a88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in npm-carpo-vulcan-proxima (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 914086ee51ae4563ba23073d07e35f8b705aa241802887a976ff6891c372670f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139898 Malicious code in backend-wasat-ceres-fusion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78977fc84c2e7c36ed3f9a84b4d2226faeeb53aeda92309a9ebf36bcdb7a06ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lacerta-apex-weywot-socketio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5af945fd83b51e0b4e1ef98ceeb87b03d2659cd4bdf13b320dc9ad61431285f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...