Malicious code in nextjs-phoebe-commitizen-dagda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00c7087b7b287470476889ddc426136442abdab2d013c904a1f9e9d558f3cbdb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-122089

Malicious code in semantic-release-process-alphard-commitizen npm...

EUVD-2025-123531

Malicious code in postcss-loader-commitizen-foundation-xenos npm...

EUVD-2025-124818

Malicious code in module-commitizen-ursa-protractor npm...

MAL-2025-146390 Malicious code in postcss-loader-commitizen-foundation-xenos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3544c8a28f043aa9e67e4ced4509db2908ad6675975cdeb4198f6d034572831a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142756 Malicious code in gacrux-commitizen-uninstall-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a26219600ef7d96d48a10ca9e239a52acae6ed0fe396c10a6afb98d447e0b34b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143179 Malicious code in hapi-commitizen-update-semantic-release (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46b26b06dc60a7b6a8944c637b6cdbf741968df7c18314dee31911816cc31f46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-111695

Malicious code in link-passport-prettier-plugin-markdown-commitizen npm...

EUVD-2025-123533

Malicious code in postcss-google-prompts-commitizen npm...

EUVD-2025-115165

Malicious code in commitizen-start-radiant-janus npm...

Malicious code in halley-local-airbnb-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a5f7cfaefcaf380f86b20f812c3d5e97113bcf8ff0e3126e8cde3c38f434c95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-115162

Malicious code in commitizen-transform-algol-betelgeuse npm...

EUVD-2025-122648

Malicious code in repository-meissa-commitizen-andromeda npm...

EUVD-2025-120372

Malicious code in wolf-polaris-zenith-commitizen npm...

Malicious code in run-script-nconf-hermes-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50ef6b1061299d5a40c1afa8a79be5c0c34df15a6f6cb207fc51e33fec9000cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-120041

Malicious code in zephyr-nightwatch-eridanus-commitizen npm...

EUVD-2025-115160

Malicious code in commitizen-ursa-figures-winston npm...

EUVD-2025-113407

Malicious code in frontend-jekyll-commitizen-request npm...

EUVD-2025-121446

Malicious code in taurus-uninstall-commitizen-postcss-loader npm...

Malicious code in module-commitizen-ursa-protractor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa3f26d53b29b1bf3883da585fa2b4f95ac153556379e35b88240b0e694943de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...