222296 matches found
Malicious code in unuk-loop-mdx-mysql (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 295429884cb23c05cd22de2b6bb4cfe7d99359296b20883aa2aabebf7b820b72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dynamo-mini-css-extract-plugin-cosmicsilence-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce8e478555161d23346f7ff922f8c5628d28d7fb3aafb9004466f99613fec9ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in neptune-framework-cors-ora (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3763b4aa9bd783df85d8f4890b25b52808b5ec0cc2cb74e17ff14ffe37444e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in weywot-wezen-bootes-nodemon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95af838a5409ad46c803f49911e5142c4505a584392775561fc0e5b1eb266f01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fast-java-stub-void-bash (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbf6d41c7ef745a2b7ef1562477f9a960072b1225abf823fd2d741c10222a6ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eslint-plugin-husky-pavo-virgo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e746ee6f0fa370fc7f0fb5e7e4e47d2df2a52bc77ffee749e24d95a1f10b426 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in link-leda-odin-fetch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e75ce4b4c89004a0671609cc9894c898727457ffbd1c7baf91492dcab7c4d92d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in selenium-neptunology-nucleosynthesis-axios (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08b5ce15902953e8f3b5533e6afd805d051c541901105d6bd4e8719cbb072f37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in upsilon-catch-new-epsilon-unix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9918022b07edaa452b3afeb8e220a7dcbac2637d09580b4fc6a95b163cf68d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bunyan-spectron-webdriver-less-magellan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea996c13b6b5a184710be958777615f73170e5e8f3a5e8fb00260064a7d769c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dotenv-hexo-apollo-cryonics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 199267a35ed5937ef5f63c6920324dae39fe64bc54a1dd7c5dc19a3157ede4a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in neptunology-husky-dotenv-parse-variables-got (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13c9776381e5efb3a7dfe09acdb7791e50e6e155d9a98bb73fbb3e50d86aa6aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in jekyll-nightmare-juno-eclipse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 720b0955abd011ee1ffc556684896bfc2c599a4b61ff0568122dda4e4e07ee8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in configstore-jabbah-koa-public (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ecdc7bac31e1fd7c689cf131784e942a76c149bf2d2cbf7658f9a38538e2a29 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in char-alert-abstract-decrypt-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f751a85d1082b7e437e365b50d7e9f5a5e775d31cb2f009ac1857bedf81086b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-179611
Malicious code in concurrently-scripts-plutology-nightmare npm...
Malicious code in try-alert-hash-catch-index (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e85fc5860c00474af9c73797df5baec4c6920cae1896fe84f084c86f57a23547 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in octans-sedna-entanglement-xerxes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e8de26676b02acc15c835b2db1cbc166b1c3da77c3fe9955268f44283710cc6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in less-mineralogy-airbnb-tardigrade (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1e150649f9701fa8a91531cb8cfe5a7a8a65c99dfd46ea28f5561aad1fc5b44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pm2-development-postcss-callback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d8abe1ab361bfdc7c9bcd7a0b5a189b4e741150d6a0e1f27487db31c5615e1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...