7333 matches found
MAL-2025-161801 Malicious code in namae-nadugsua-mitosia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b542777fbb97596998d429e2a57d58ce47fe2c18f15186552a234264ae1d8b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-161456 Malicious code in nabuf-otimmn-afoqaofga (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e7e00b66bd8465c6f636ac3c635c04def531046c0640adaeb2031691d4772dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-161203 Malicious code in nabila-poke102 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78f7e60dfe39c434660c1e3e894519a13bea798cae7026768984639b9ef214bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nokire-genji96 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f04f91b96c0ba28d0ee2215394177cf64c732e778644aa090eb8af8c67460407 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-163663 Malicious code in nudalea-fofiari-agomoido (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd5da5926e074ef3f802db1bd21f6f1827399b17edf52a7aba338699aa2adbdd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rate-limiter-mira-test-figures (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 459e4c2087053867386e2676432667509cc728c02281ab2bf11291ecf3ce2352 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in scorpius-upgrade-spica-virgo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17ed6f3c60cb602dd42909563e4d53ff2103fab5f610611b4fabfddc2e51955b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nodejs-relay-rest-deneb (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7eebe4eaebfa21765d31bb1cc219e53682e79a49f3b933f65fdcaeb12f33d106 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hyperion-loglevel-quark-auth0 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12b941f79038bbce9958ae4c4b3f47fbd6a6aa8a398a4c02a26fcab2ba71c021 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147961 Malicious code in sirius-loop-axios-hydra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81efe827f5c03793fb107aafce4247391764affcb9f2d64a7af4644870207ad6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in release-it-xo-jekyll-relay (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76602650ce2e54b45d8b369d4cbfb502416f052b5cb52458648461f6b35802db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145000 Malicious code in mira-altair-markdownlint-electron-builder (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a3a9a1d2217dc28fa56bf41ba8f7d16d0b014d78bf3de28b24e6c5a8d48a0cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in winston-wasat-frontend-hyperion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af1e87b3b20c2fe6fcc2a57079c6652db190328cca043eca984aa1659c223725 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in slidev-nightwatch-uninstall-xanthus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a80829097b2716b4af04bc74ad7affacacf4db819ea009dfc6f652948ba2ad69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140098 Malicious code in bootstrap-blaze-betelgeuse-magellan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8fee5f7c3e2acfbe7402c84173336a1d9eb3ff7a298a28a3038a72366844dd70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144980 Malicious code in mini-css-extract-plugin-meteor-capella-nconf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a2bffa9bd292d3a0b9290865876b6ebc6200573a041491ba008385a5a036a1d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148391 Malicious code in supervisor-corvus-css-loader-spinner (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e717c0a7c2be48cd214be01d42a303508b2d0dbdda6904c59955d4168e4f36a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142830 Malicious code in gatsby-antares-metalsmith-eris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0608261a0fe9f89fd63b28a2f5ae4ea7d0bda75b02105c40feee677bf54f4ada This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147479 Malicious code in rocket-semantic-release-spectron-polaris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 789b9c2bd6f2aea5533f70a230da1e752358a6a24ff8f6cd758000f14176de92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in andromeda-puppeteer-winston-gatsby (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9da7751df8e8035a7d7a1e041dcaa9f572e67a2ba46dc6c4d55f8b77556815e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...