Malicious code in rifqi-kacang14-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2715e93252e81934fd25c323a4af86c31caccbf1b08d1eb68296b57eba65d99e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gita-tapai97-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a36b40a07dcfbaa8bbf51eb6e7280240c07ca825416a4cc6fd47221261a27989 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-128537 Malicious code in maman-sambalado74-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8a21a1fade685c3bd5ab152ebe15bd7cd1a681f0a1787a58f5d1f868138ef84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-130085 Malicious code in secure_beetle_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d202373bf7e2973a99857c6a1bc4fe09ff75415ab65456ab6a3cbb71dbd94694 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-127480 Malicious code in irma-menjes24-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9596646d5f0147846d59e2370a336ec7672ffd2e1ec65c944d25ca52e8b76fc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-126495 Malicious code in fauzi-nasipecel9-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8308b4a88942f4833615d6475ae97eac521d4a15336ebb10f3a93186114fc723 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-128735 Malicious code in mulyono-tempe96-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98668e539a1e3df8e43a39a425238ae5567fa306c5a6a5164ef63a2608c1f143 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zul-brengkes20-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f01b2f37ad09bb874ffe8893bf2267b464c319d882434c5992d5362596b7e1c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gita-tongseng37-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6068a13e9068e5df60441a48a808852d91b7cd5fdcd0af9e3b4c8534a4620c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-121016 Malicious code in jaja-semur45-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0977b17131276fd5399181524bbad3df2d1b7fa81ac6879d87ef63f922746658 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in candra-saguer91-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9e6867fa97ef0df81da08f05db6eb9672328499100dbe1a2b94bcbf5013989e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in identical_alpaca_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 145f95f5a55a303acf898b70ba3061882d632019e27c143439902615b2979551 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sinta-klentik47-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 779881372927f3e5adecce0d14bb39db44c5272b914ab65aeb4b35696b436b68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in maman-rangginang30-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ebcde47c7f3aa31524f03b4b0df477d34da7516e78cac406cb0e08ce119d493 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-121266 Malicious code in kresna-ragi24-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a065bddeac34d86ae0fa5522d1c39182b0d0db892c9188a2d01854092e8a8955 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-124152 Malicious code in watery_kangaroo_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8db3e31372a658dc938289a2b42d5e7ec73bb35d0cecd9b160c4508db6a8632f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-123890 Malicious code in utomo-asinan73-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e2b048d7030f6c66c1b94344dfe0150c74b06376ba372252b26d9dc5c3199d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in python3-setuptools python3-setuptools-wheel setuptools

Summary Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in python3-setuptools python3-setuptools-wheel setuptools Vulnerability Details CVEID:CVE-2025-47273 DESCRIPTION: setuptools is a package that allows users to download, build, install, upgrade, and...

Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in torch-2.6.0-cp313-cp313-manylinux1_x86_64.whl

Summary Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in torch-2.6.0-cp313-cp313-manylinux1x8664.whl Vulnerability Details CVEID:CVE-2025-2148 DESCRIPTION: A vulnerability was found in PyTorch 2.6.0+cu124. It has been declared as critical. Affected by this...

Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in tar

Summary Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in tar Vulnerability Details CVEID:CVE-2022-48303 DESCRIPTION: GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitation to...