2698 matches found
EUVD-2025-116478
Malicious code in async-europa-exec-solis npm...
EUVD-2025-113270
Malicious code in gatsby-exec-foundation-gulp npm...
Malicious code in spica-eris-spica-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b8fc462d3d14f04b10e59cf89cab9fe1da14d121a76001f960b85f460b21562 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123431
Malicious code in prettier-plugin-markdown-procyon-non-blocking-exec npm...
EUVD-2025-115118
Malicious code in commitlint-jovian-exec-figures npm...
EUVD-2025-113770
Malicious code in exec-fusion-backend-corvus npm...
MAL-2025-148161 Malicious code in spica-eris-spica-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b8fc462d3d14f04b10e59cf89cab9fe1da14d121a76001f960b85f460b21562 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142604 Malicious code in fornax-adonis-odin-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1057fa9aa80b77472c8729ad36c4948d1d200c0d3c2f3786e76cdf47a9a791b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143204 Malicious code in heka-exec-terser-webpack-plugin-start (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 459a8911d404ea550d39c9a03962c94d442f59f3731ba158658f93ea0e9d1729 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139280 Malicious code in aldebaran-grus-playwright-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57e02caa4a0202f9fe74340d729f4014eb8e1fbf97483fdef1e9ccf1041ea252 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139979 Malicious code in betelgeuse-exec-update-magellan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e555950e15a7e2b4e020ff7b30c178cb7e9d44c348eb8310e6831db7125e83f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146529 Malicious code in private-apex-async-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 809989375fd7c4fee0ad26f02ee0690a7036ba01a3577306714bcb41ddf649ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140132 Malicious code in browserify-meteor-exec-jsonp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 122e7097b25471597433a406c160c80c2b71d0f76c3ef49421322f2d34b31c6d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147158 Malicious code in regulus-spica-passport-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a713fe213ed9bf0e8d60873861b986fa6ae9d86a561fc57c525d5bae053da4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149232 Malicious code in vulcan-exec-foundation-gridsome (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 393418d75ebc2f776c24e86203957211190acf17666ab3c9cfeea66c745b963f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148371 Malicious code in superagent-atlas-thuban-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e878b4e6fd11733f8146f15b3f2adb704edf92f18598b0e9acf12cafcb3a9c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144171 Malicious code in kinetic-exec-spectron-webdriver-child-process (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7effbcd1496d9a2517931b273a2bd6b3fe910ed3cc3d39cb648b766711de01d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148256 Malicious code in standard-markdown-pdf-lyra-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9734af3a6b4cfc3fe7e3af82e68cffb82ac31f0c0474818b7ab95d397e331d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144247 Malicious code in lacerta-middleware-procyon-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da1b28da3265a24a7bcce4680ed10ee0d5aa21f933a37897e5c22f5b5203a960 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142356 Malicious code in exec-nuxtjs-async-await (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0547138917a1647cd799533fb1a5d590a7076f852e032130c1b80b909a792139 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...