EUVD-2025-117015

Malicious code in unexpected-tomato-frog npm...

EUVD-2025-117216

Malicious code in nasty-orange-frog npm...

Malicious code in quarrelsome_frog_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65435c28324fc7ab670975fdc7b9738a92f58a69575673711b0d39d813c1a1b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hissing_frog_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95c5a0c7bafeb0c64a43c2f09d50a915f0a4d931ac4cc00dc32fd648e49ed72d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-134177 Malicious code in hissing_frog_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95c5a0c7bafeb0c64a43c2f09d50a915f0a4d931ac4cc00dc32fd648e49ed72d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sudden_frog_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b26dfd3efd868bc317105e34bc5a882dddcd969ad40a1a71d4d6aa25210963e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-102046

Malicious code in subtlefrogz3n npm...

EUVD-2025-104081

Malicious code in littlefrogz3n npm...

Malicious code in tender_frog_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de37089b150318ef41e74eab82bbd3aa9eeced64eb646260a1f180d6187becd0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-105089

Malicious code in generalfrogz3n npm...

Malicious code in binding_frog_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd720766d99045e0b9d54b48a4927f14317d13368f8b7499d7161729efb263d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-88431

Malicious code in tinyfrogz3n npm...

EUVD-2025-91514

Malicious code in gracefulfrogz3n npm...

EUVD-2025-91709

Malicious code in giantfrogz3n npm...

EUVD-2025-76218

Malicious code in nationalfrog-silentdev npm...

EUVD-2025-76003

Malicious code in poorfrog-appteadev npm...

EUVD-2025-76258

Malicious code in mobilefrog-tool npm...

MAL-2025-105921 Malicious code in mobile_frog-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be780881938735641b84298ea503ee9d6ee37e462fd769269d24c69267560d18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-75820

Malicious code in representativefrog-silentdev npm...

MAL-2025-101612 Malicious code in disappointed_frog-notthedev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20b403eba2b6d3981831b418f2ec035508fbd24a8f9a96c5be0bb597dd299a45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...