7991 matches found
EUVD-2025-122460
Malicious code in rocket-astro-cli-zenith npm...
EUVD-2025-124267
Malicious code in nova-cli-cosmos-phoebe npm...
MAL-2025-144356 Malicious code in levels-markdown-cli-cosmiconfig (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a91e420dffdd3b632425f0ab36ce3acc96e1a91ca101b3bf8e554a24c98aa932 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-113276
Malicious code in gatsby-capella-cli-titan npm...
EUVD-2025-124185
Malicious code in oauth-nextjs-winston-cli npm...
MAL-2025-149569 Malicious code in writable-izar-tool-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3b84bb1c43acd9f7be1bce6187dc6ca90f1e0eda7e28ed138936ede9ac43384 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140810 Malicious code in cli-sedna-xo-tool (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea95c52ea49932e465b636027c985528b53c29b37dbe031de9640b0ba8b01cb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-115308
Malicious code in cli-gemini-kastra-unuk npm...
EUVD-2025-124381
Malicious code in node-sass-gacrux-venus-cli npm...
Malicious code in aether-cli-ariel-spawn (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6cafe7413479fb9fed550e2556cbdbe777ac1cf62089cac36a45b27a23e59ccf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140813 Malicious code in cli-ursa-lyra-middleware (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 404b7635e00676f5a1f01eb0daf4d7a14be165f5c23502d43264abd963cd7c7f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140503 Malicious code in celeste-cli-uglify-js-update (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fed63cfb1fb82bc628b16d127c52caa67e626fb4c898671692e4b6fb1d5e614 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140809 Malicious code in cli-rimraf-callback-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 507b5deb9e378a4729ae079af92904564d22a267bae8b21fe5e7db7342c1e2cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145540 Malicious code in node-sass-gacrux-venus-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eac146f9fa66bd3b7933e6bd605cac605da91e1f8367be1ef65777d7ebaec84b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147462 Malicious code in rocket-astro-cli-zenith (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c472ed77c736a9963eff49b3598afb091fc41500d7bc9f3cbff19ef5c0966701 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146184 Malicious code in phoebe-style-loader-cli-jupiter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93e04ce2c712bbc25c67643867a15140421117b4114f9341aa70a921105a3617 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148156 Malicious code in spica-cli-heka-cressida (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1283db4e16fe1d6642d68aea1d2f64f45a839f4b78e6f65fe2da51ee9ec9f3e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140799 Malicious code in cli-geckodriver-sirius-winston (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8e1410ae9b38e65f7afbdffabb2ae9666d120b7fd9146797cb25adf35a46ede This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140812 Malicious code in cli-supervisor-meissa-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74ded4cfab8e2f8639c75038f912fc662017e8aaf4dfc60ff97515f615d09a11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145654 Malicious code in nova-cli-cosmos-phoebe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a6b8ac52d3123426f5132fd67a06e0827677939e3a3e3f9791efae39d16a263 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...