898 matches found
MAL-2025-188772 Malicious code in polaris-winston-cryonics-palynology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e5e7d42f185ed3a6589e791dac133bceb2f0d294c95c473ef0661645b658ff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rollup-plugin-optimize-css-assets-webpack-plugin-bootes-polaris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a22361096be70425abad1a7efd5cf9876ee3807f16a6b9935376c78fcf0a8d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190318 Malicious code in whitedwarf-inquirer-csv-blitz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d750b9bdd14da059ef8cb9f7ae5a0d0de018cf3ce9d7393049e79180ca28bfca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187051 Malicious code in frontend-inquirer-webdriverio-cryonics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d0dd62122f5b3f2d321a63dcc3ac7bcf4acee18824dd55660f527f1e1e8a641 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in prettier-json-publish-quito (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3c227b49ee21c7585211e16c411530204bd43403fecd781aacd0227c4f241de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189949 Malicious code in toml-protractor-spinner-inflation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81d222bb1a9411c20be96d3aed78769716a085e98dc4e62cd956f0cf3ce62615 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186739 Malicious code in encode-promise-cold-awk-easy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 770b733289ffaeef1159c7bf5b8359c052e3f1e56bc9361230a958eb4d3d4a34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185772 Malicious code in bellatrix-prompts-webpack-paleobotany (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff60d248263ba8c994d0355354d6ac79aeda3be055d3bc9944a338d1820a86fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sedna-nova-readable-levels (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 519472d81a3bae325559686848d27604cacef6d3088adabf65c3453988faa0cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188976 Malicious code in pulsar-run-script-process-io (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a68b094e7ac4b5b258bca7bdb56f33a009ef457bd35abd4b0bfbd4a72681e437 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189385 Malicious code in scripts-duplex-innercore-mongoose (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 795b605e61cc15d48e6db76692728e9b0cf00f022d125f102ddb7cde83246cb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pegasus-resolvers-leda-mechatronics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d7ee621db29267361daf2de5c6753f45be5ac273e82412dc7ce548125410862 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190346 Malicious code in writable-jovian-pino-markdownlint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19f4b238352d52b2cea590b0446ad3e308f8dced4b1490cf8e439993646c0a9f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186260 Malicious code in compile-validate-sandbox-node-async (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cdc4473c74d323ab1478cebfa6f67c5738a3dc065c1c5261534dc58cc730cb86 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ganymede-flare-aurora-membrane (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0243563bbd76210b34b5e68a36b4784afe93fd2191c332071ac47dab89494808 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in umbriel-singularity-auth0-polaris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2f69ccbe8e6a8eb8138332cc56108dc45adfafb0b70e0e8c985263b01df82b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lambda-daemon-cron-delta-link (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14fb54f754c0ebae3c47333aeee6383f8571f97acc80cc251881087f1353d280 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in futurology-arcturus-saturnology-leda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cee2cbdc2bc3dff01e44b79762d6c94d9ca914096274d79ac432f730d252e8f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in code-interpret-finally-decode-cold (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bda77329400e2d6d937de5ec4642461363583de5cc3bc09ba36c5270ced52d51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in quark-photon-eris-speleology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3bc318af39702e1bd1c0c1bfdd4e4af1ab27c81c777b6853f7a5acfffbb10e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...