9582 matches found
MAL-2025-143781 Malicious code in jabbah-leda-install-eslint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d12f6206cdd8066e12c04469916390bf6e9c7de288ef09cf420a09ead8c87823 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148080 Malicious code in solis-node-config-antares-levels (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae2c8da07ae20da8b6e8ebb222294ddec9a48db903489a63c5a274d038252f3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in betelgeuse-test-wasat-iota (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2627a3d5478cec46a418310793381c869e3537e1fe33a28306aef8abc0b44db1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in build-publish-centaurus-antares (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b97fdf8cc707d1ad10e2072131e6414494e53de3f5aad8415866f852ad745ef0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in neptune-eris-rollup-plugin-nashira (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8f9c685aef5b5b9c0f020ad1b241c7b6dc706cb726fd15aaf95398f50602866 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in jest-mdx-aurora-scorpius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91b68d4bbf9b461dbf984128d8547052b0cebeff32e91ea0cb65ef648bc2b548 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in iota-node-config-nconf-zenith (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 776028f8550df0eb3f0612e558293396e665b35add8f207b7c3b8636a9fe1b6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eslint-plugin-request-indus-magellan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53ef0d07a987d27e4c659a7944026bc057f89b21342a892da7330296ce732087 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in titan-quantum-unuk-gacrux (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2442a3f0060056ceb4fb323c6c2eba78b7c4abb16e5826b0c5a13a0f9bd413da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in upgrade-sequelize-mensa-alphard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df0ff8cbb44b5e6aef3b12f19a391df695716e76d68aebf347771f7ae51fb08a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in toml-changelog-umbra-rimraf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42d8d922c0f5886f548454be277f67c9149630b0200138d97c82fdf16e502c48 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in proxima-process-grus-fomalhaut (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46e2ea0253eb4cbcf28c3e8526b146995a264704021ae0f5ee845fc8dfb8f84f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in terser-rehype-magellan-cz-conventional-changelog (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6cd795e4bf8a290dcb46cf664f3256b9bbe1c32d968fe59c20bea542a8a7ded This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rest-arcturus-io-spinner (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9d0b8686eed7092e318656016dd7a3307ce443b16ea6fab1ef179d685a0e7e7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in europa-elara-ora-antares (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d2429416003a98f5ff4a3134836901c63b440a91cd3ac932abbeb75e3bd0536 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eris-chakra-ui-sass-loader-fornax (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb06093fde32832822f36661642b3ab387c58a1ce995ae5993df5d4f745159fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nashira-enceladus-hermes-cz-conventional-changelog (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fccb25472b5a53f94b5ce38556e9aa4ad103a488b4ea0a138a81bb97c23fad1b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mongoose-pavo-arcturus-csv (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdb3646c653052b4f7657c65572c429be051821f24a9fb82a8bc96c3fff2cd0f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in enceladus-ultra-promise-helios (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a416030b6289ca86673836bddccd53e96ca3cefa44bba0cd43978242285ba90 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in prompts-nashira-pulsar-jekyll (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b34b2df3d4a4995a17928a35dfc555917a0dc66c1262a3ba9686778acca2a992 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...