7981 matches found
Malicious code in ultra-stream-cli-lynx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8919da0e5107515453a1601a96d63ff99ed9feb3133d9d1590a4a91432c96de2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cli-lynx-nova-element-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8e0af512198e413bd0da9e0fbed417f8a39382fb085a429d28eaec3405abc38 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in playwright-cli-antares-lynx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62941a3085c080ce17c8f0e51fd2b6b90ebbdbb7d4177709b5c4bdf44692b987 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115304
Malicious code in cli-node-config-eridanus-dione npm...
EUVD-2025-114110
Malicious code in eleventy-kastra-cli-sedna npm...
Malicious code in cli-celeste-cors-fornax (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d7492e3952d9434eafd92a7f6c3705c199c7ed56c4ee9f13f1a3fbdeccbf70c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115303
Malicious code in cli-norma-celeste-less npm...
Malicious code in zephyr-resolvers-cli-concurrently (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c010e7aa179a021023ded32a1531ca34e4cd286c20d4e8b50aca8afa148a3ced This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115306
Malicious code in cli-lynx-nova-element-ui npm...
MAL-2025-149894 Malicious code in zephyr-resolvers-cli-concurrently (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c010e7aa179a021023ded32a1531ca34e4cd286c20d4e8b50aca8afa148a3ced This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145540 Malicious code in node-sass-gacrux-venus-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eac146f9fa66bd3b7933e6bd605cac605da91e1f8367be1ef65777d7ebaec84b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146184 Malicious code in phoebe-style-loader-cli-jupiter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93e04ce2c712bbc25c67643867a15140421117b4114f9341aa70a921105a3617 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140812 Malicious code in cli-supervisor-meissa-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74ded4cfab8e2f8639c75038f912fc662017e8aaf4dfc60ff97515f615d09a11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145431 Malicious code in nightmare-cli-ursa-phenomic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c815f45736f8f59bd1582476c431a200edfecc2b39875a5ab386550f4e203eb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149569 Malicious code in writable-izar-tool-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3b84bb1c43acd9f7be1bce6187dc6ca90f1e0eda7e28ed138936ede9ac43384 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145654 Malicious code in nova-cli-cosmos-phoebe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a6b8ac52d3123426f5132fd67a06e0827677939e3a3e3f9791efae39d16a263 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148156 Malicious code in spica-cli-heka-cressida (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1283db4e16fe1d6642d68aea1d2f64f45a839f4b78e6f65fe2da51ee9ec9f3e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144356 Malicious code in levels-markdown-cli-cosmiconfig (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a91e420dffdd3b632425f0ab36ce3acc96e1a91ca101b3bf8e554a24c98aa932 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115301
Malicious code in cli-passport-iota-corvus npm...
EUVD-2025-120646
Malicious code in wasat-cli-barnard-style-loader npm...