7991 matches found
Malicious code in cli-sedna-xo-tool (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea95c52ea49932e465b636027c985528b53c29b37dbe031de9640b0ba8b01cb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in colors-corvus-postgres-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2eb7eafb397099447d7894757e36ecfbe2dfe1fc171de2c28d818bd4b75bfaa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in deneb-cli-process-protractor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 456e0252c4e2a30003d54a2df3e186700c4398ac5252d762bff1e11127186e02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gatsby-capella-cli-titan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e70ae7b409af968790cb31d4f80f53de02919a0ec8faeb9b589e37e0b5e2c3ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gravity-pm2-cosmiconfig-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76d5d825950e78fede990188d0828c15b780d15be9a2cbfdb65192a4e13a6186 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in husky-cli-axios-private (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3e3ac914740a1f8e6ac85c3136819adc22fbba0178c57d910ad1afc930d0768 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hyperion-scorpius-xerxes-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5fcf3ea9fcafd2dcd691e048a33ae8872e48097d9d1a615d8762e7bbaec02d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in koa-odin-aquarius-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5224286352a2ba1a1be9265f826fd979201b470b0eadf7543fa1921604f6f120 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in playwright-cli-antares-lynx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62941a3085c080ce17c8f0e51fd2b6b90ebbdbb7d4177709b5c4bdf44692b987 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rocket-astro-cli-zenith (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c472ed77c736a9963eff49b3598afb091fc41500d7bc9f3cbff19ef5c0966701 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rollup-spectron-acamar-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af8656fd896287bd8c9d143d4a1422fefe39929d2ccb75fa57c25ba1c57a304b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sedna-cli-csrf-telesto (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0e23e8cd40c2c78f1ec47be9e930934db34eeffed408bdcbbd9688392b70daf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in spica-cli-heka-cressida (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1283db4e16fe1d6642d68aea1d2f64f45a839f4b78e6f65fe2da51ee9ec9f3e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ultra-stream-cli-lynx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8919da0e5107515453a1601a96d63ff99ed9feb3133d9d1590a4a91432c96de2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in wasat-cli-barnard-style-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6495e5dd212b62e122019aa03288e721c9ebc41f26fbc902e00502ce9f915a41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-111915
Malicious code in koa-odin-aquarius-cli npm...
EUVD-2025-115291
Malicious code in cli-xerxes-less-gulp npm...
EUVD-2025-122163
Malicious code in sedna-cli-csrf-telesto npm...
EUVD-2025-123864
Malicious code in pegasus-superagent-await-cli npm...
EUVD-2025-112099
Malicious code in jsonp-writable-grus-cli npm...