13598 matches found
MAL-2025-186262 Malicious code in compress-async-rho-boolean-assert (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b47a72962d3c729d5d4253ec9d28d30df0480c577add110900f74126b32e3a6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188046 Malicious code in mineralogy-oauth-eslint-node-sass (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbe44d4d94ee8dc2a076fbd2c79e1f212e27c5eec50895aeb116768be0b5a242 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186465 Malicious code in daemon-function-throw-file-dog (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5a73e261a4f17a185bcca6a3ab3abc503be436cc2631043966eea2b64c29a97 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186288 Malicious code in configstore-quark-sync-callback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30c3b67083ef101f23672989003756131308861e71de005811d2edde2b5f3f8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188163 Malicious code in mysql-local-bootes-triton (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c64a6dec662b35954b462c22e6a5bd9d14a5452fd7ee1386da7b709d78a68442 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188302 Malicious code in node-bundle-omega-deploy-sandbox (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a095ecc1cc54c8a2cf8e5c0be06972400b715b4e3b047d2e5ddef93d5239ae2f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189423 Malicious code in seismology-enceladus-comet-singularity (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0edc944e35e75d3cc120f551d1580a20f478145a53e2e6ca603a6964f447ec6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186421 Malicious code in css-minimizer-webpack-plugin-hermes-spectron-pavo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d8dd2b1b22f82ca3c1eb2d83c301404fb836de51f9c33128031bf6be4145a22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188125 Malicious code in morgan-meteor-loop-delphinus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70f8ff4fac46120d5c038ff72708bfc1e04ff3b4a1d0997b5a208cd5adfdcf26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186638 Malicious code in draco-cygnus-repository-aurora (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd48d72c64c9fe1b6b0f79051ba805240b950b7b00b9f6379eaaa50d6ef54319 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bad-kappa-spy-fire-error (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fd357cac25b9b3eb95f0ee24e2f44d4765d6fcd28cc491590ab1b7e043b31da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in protected-old-compile-java-enum (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b82b9faba756ec3297391b2a0c1518d9b45163858d66e9998384660a6c80998 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in schema-dependencies-paleoanthropology-xenos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a5aa35035cef2c1cc6c6bdb74528d86c9297519b890f65258d575cbc34a28f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in non-blocking-luna-axios-pegasus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e90d96a5087b0d86ea97cb4b2dd3fb37497ff4b0f4a61dc835ba9fba5a1215d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in aether-dione-test-markdown-pdf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb259ccaf3d1c636e4a75212af3fb8173b2ac77a1199ddb3181a1018bcf258ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ursa-testcafe-innercore-planckscale (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dfce035eabf7825c0a7f26269b5bf0b12829681278f18b5eadef5359a7fca39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in process-daemon-pipe-try-bundle (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 316ddbb2ffbd1c43021a6c11d374e9f08b52489cfe301ca4161e0c5bb3169d93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rollup-nova-wavefunction-rimraf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a71178046d6bba4cd289f92d4a80c4b5b2938521d5c4be7a784b9de70d0b722 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in json-geochemistry-exec-publish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac7263cc49a2de8d29f135e5aec7b352a296376f9daa03d696c3de0a19caeee4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mysql-quasar-nodejs-node-sass (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ebd850e11f96234af50b605f1a2c8caa8de160561576373c59874ee07222b79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...