222318 matches found
MAL-2025-187109 Malicious code in ganymede-public-canopus-hydra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8666d987c2ffe04eca9ec038bd50b9769fb0d7618dc1d35751253b44ab3d5d39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188318 Malicious code in node-sass-kastra-bellatrix-express (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98ed5621e5b26e16d55057f9b96d4cd29d973f3f25f1595f1a1a04ea47c9c0ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186406 Malicious code in csrf-bootes-html-webpack-plugin-ichnology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42e683c14d1e59c58cadcd514400f46ff49670101cb068cc2ecf1d95b413dcf9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186419 Malicious code in css-minimizer-webpack-plugin-firebase-corvus-supernova (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b02a5aa11d22cf97489823152a632b2494558466c81b352b58380b9d679dd3aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188225 Malicious code in neptune-node-sass-altair-membrane (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad682c7ef1b00daaed7b6861c4172801654dbd52ae27354ba342091db9601ad2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186281 Malicious code in config-xml-sirius-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a58415b6cbe6528432cf6e1e8cd55074b566f71bef9a5cda12bcd5ebc971b522 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186875 Malicious code in event-bootes-dotenv-parse-variables-ursa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ae4e0c7b9d2e48b442477e4c3c2f2a64252e4a63f95a4e5c549a3e8047be585 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186149 Malicious code in chromedriver-json-polaris-hyperion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ef32861229671cc069a228322d0a6b1db62d689ae18e79f73f60ba5d10f87ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185668 Malicious code in auth0-stratigraphy-ursa-cordelia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11a88a92b26c3c4dc2b4c25959fb6dad8e7465407b50ab1c45e96b9a750a3f00 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185681 Malicious code in authorize-signal-report-omicron-decode (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48d8ba11d8a4a4607c7f53061d2de0abe671593a7676068b13d46e6f8fbbcc09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188166 Malicious code in nanotechnology-ariel-atlas-loopback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 726ac8d50d2a6fb517f785829fa5c9a3f25bd010388eeaa6547b9f90cdc68a42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186336 Malicious code in cosmicray-mechatronics-selenium-tailwindcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6da921e05e6fd360c43a4f94406b773772224e6ecdfa6457c1fea2869b6db4b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189215 Malicious code in rest-paleomagnetism-eris-got (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e0bc402668138cfaf7a98c94602606b2e89444223aeb567e96a42bef52c285b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187047 Malicious code in framework-rimraf-buffer-csrf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4fd7bd0d93981950b7dfc97b285205d98122fbf996356148515702794779a01a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188787 Malicious code in postgres-asteroid-readable-dione (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fde9ee609c1893f744ce44f7e17918ae0bb056420c1a91a06cf22239e5736047 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in quantum-computing-less-loader-mensa-css-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eefb4c011996c06f58eda7e1840993e823cf3eddca4bdc92a366643fbc9da57c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ignite-hermes-ophiuchus-semantic-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a46d3fb402931eff7024c48a03204cb67a6ee59f55d17ca893a2a5d4973ec28a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in concurrently-fork-blazar-helios (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46e2cfa382a69284deda13d32454b9f9e9e1ed3c213c197f1ee60c093e7277f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lithosphere-markdown-pdf-winston-neptune (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc6fbfe227af2797cf89ea184596ed69bc80870c57f08a1e421accae594ddd57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in meteor-cache-fomalhaut-winston (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0462fe49c99304144ad4d9f3b517e441c06daad585939395d80b64f71ac5e537 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...