226 matches found
MAL-2025-186831 Malicious code in eslint-commitizen-firebase-upgrade (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84a02e2ebc235a5858f5242b7bca357fb71d130da4ddc12d9ce922d603aa30f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in await-lacerta-ganymede-commitizen (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3768dcf0227735127c0afebbc782199e7566c7e0b7bd1a357fc0512632645940 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in chai-got-pino-commitizen (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d4038eb99c7a3c61857cd8ea91f7024e5f1510152d4f3c6577ad77a0bfbd3b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-180342
Malicious code in arcturus-nucleosynthesis-commitizen-ini npm...
MAL-2025-186242 Malicious code in commitizen-playwright-selenium-publish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c754c3bfd1ff8786771ed58cb3d42e85de78b7b2210d6d9979d54019bdb9ae60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-178099
Malicious code in library-update-commitizen-jabbah npm...
EUVD-2025-179643
Malicious code in commitizen-chromedriver-redis-polaris npm...
EUVD-2025-178304
Malicious code in janus-proxima-commitizen-auriga npm...
EUVD-2025-179642
Malicious code in commitizen-eclipse-sadr-chariklo npm...
EUVD-2025-178517
Malicious code in holography-commitizen-kardashevscale-morgan npm...
Malicious code in soap-commitizen-markdown-janus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b53fccb69500874953f39548c3d62dcc571d4b8fb7e15d1fcad2ffb8ccf05986 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187759 Malicious code in less-loader-sedna-blaze-commitizen (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0aed9d31de0bbd2811f97f41f0bf00007a65a06d53fe4bd3a25fd061d296763 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187203 Malicious code in got-paleoclimatology-nebula-commitizen (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c594bf125d3e98c114785d243fe86ffa7d25834160d19bd9debc56f1fabc9f4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-179920
Malicious code in cache-hercules-xerxes-commitizen npm...
EUVD-2025-178123
Malicious code in less-loader-sedna-blaze-commitizen npm...
EUVD-2025-180448
Malicious code in alphard-gatsby-commitizen-node-config npm...
EUVD-2025-179640
Malicious code in commitizen-playwright-selenium-publish npm...
MAL-2025-185696 Malicious code in await-lacerta-ganymede-commitizen (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3768dcf0227735127c0afebbc782199e7566c7e0b7bd1a357fc0512632645940 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-179638
Malicious code in commitizen-singularitarianism-framework-wavefunction npm...
Malicious code in commitizen-playwright-selenium-publish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c754c3bfd1ff8786771ed58cb3d42e85de78b7b2210d6d9979d54019bdb9ae60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...