Malicious code in spotless-bronze-seahorse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cebd7fe9132cd6c4f90900f141eb85210a500674eb1f7955f3af2f297b4220db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in swift-lime-hookworm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4177e761924819dbdf8796206e4cd3b682129a4c04dd8be58cfd721bb5db08f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in honest-scarlet-horse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b405a6485b23b4c9caeaf00f00ea0c3ed6c3ee6b1a0dfe9b8516364b10a2be07 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in renewed-peach-gerbil (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f74d33d28a80810af45ac7ffe28c9187b9df16c2f8cf17d374899488be9aea14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71476 Malicious code in vitreous-amber-peafowl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 564a5f5b31ee732008963b6f231852436b5ab720412d97b636396f481f2b1853 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71621 Malicious code in wooden-black-bug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8447e5e3c56fca9d4f014b4556d4f9d12c77f22038738044de77fc3ce1e23f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68855 Malicious code in increasing-scarlet-lemming (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7eccec2d0b6ea6c48780921b7d711e065f6890e6ea78def0423c66107fde8de0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68464 Malicious code in fundamental-chocolate-tapir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfe06d7d2fd77bfbc212d4bda7dd9be573c2157e262482554e13115ebfdecd90 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-61906 Malicious code in arif-botok72-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e6e90fef25cc884cdaa488caedffef5f13decbc104098a5af40e5e3666e0855 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-63013 Malicious code in fitri-kemplang100-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66548f52cc91ebfa327e73409c220b1ee6f695a3ea6427b961864da55bb001df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in maman-soto20-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 971c424777c9d29fb75db1b89d88ecb1c9ae18a49dfc42383d1542c91c829941 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in surya-brongkos86-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2534ecd6569e82a0915872924bc73c1b611e6736a0ad5c94f4c45c5bdd34b9d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in umi-ronde85-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a93bb6634f7f0a866f498144a5e7fc0ce155fadd0403bf6654db95989ced93fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wibowo-mieaceh31-sumpek (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 068eecead14bf6c666519194ae8d6de70d59cb2f8418aa02e49de7be03f32e9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-62105 Malicious code in binding_spider_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deeb312108abcaf76a27e7c163218918ff9f585f80bb121ce05d8ebf5636d7ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66256 Malicious code in yanti-enting30-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e417b786aeadb99c6d4af353fb4b3d06c73cb6f8cd33448360f1002d18ee8231 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-65608 Malicious code in tiara-tomat23-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bdc7837f3d3a684ee6b72cbde5299415b9e1f688c06691bed889c91a64c4670 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-63712 Malicious code in joko-ongol-ongol1-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1456029c3289a8dc12bd2bfe36f3d305a369c6dda361a54cf18640dd315f3b37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-65208 Malicious code in rudi-sambel39-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dea37315bbb66341ebf4f56aee8a041f3787c61ea3b06606afb732bc7e753ae2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

KLA90062 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A security feature bypass vulnerability in GitHub Copilot and Visual Studio...