3264 matches found
MAL-2025-185746 Malicious code in balance-quick-throw-bash-scale (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0add969aba29a3927363cccce51320086be073ea29a996c0087d9ab4119c23d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185465 Malicious code in antares-genomics-grus-planetology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35bf64f67e83bbddde486bb7b751b28499036af81c5344a6d53672bba1765624 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189225 Malicious code in reveal-md-electron-builder-chalk-steganography (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dad219c6c13a2f6799e4676b3d3104655eb69ed912f81bfa7f92b9610298c61b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in package-eventhoriz-gammarayburst-parsec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be04f1c66dbc50675b3c662cb03f969dce4e3ba82f68939b2b1971c8c1fd86ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in crust-thuban-archaeogenetics-callback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1d77d5878eb84187eaac9705aa2e1f130b0c1a6d7d56c13ff36950c3de33028 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in holography-hercules-janus-postcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc0747bbcd6e1cb7fbbcd0dc7b214cd578ce9437437d5ff92c3122cd217d7f36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sagitta-wolf-barnard-geckodriver (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 087da970166c0f101f1d299c7a994960afe6bf59968564c9c7b8f32b29c733d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in neptune-sync-holography-xenobiology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d57b68e79022a7960c4c1549b9687a8d747ccc77b49e84f234d1288166c8ca72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in tachyon-mesosphere-spinner-pm2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0199d4ad6da5ed57f1010cac95dc16558ece4d84ae6e6c6fb857dc52e6c6370 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in superposition-brane-gravity-altair (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d9c82c048bb292bb73d9d46a6684296f3b4daf92daf54aa70d1879d885c4731 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postgres-asteroid-readable-dione (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fde9ee609c1893f744ce44f7e17918ae0bb056420c1a91a06cf22239e5736047 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in spectron-grunt-auth-europa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6cbd342d4b73f3ab91a46f07b5ec0f8fb7ea8893422949f32cb9b9cae1c1dc1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in decrypt-sun-mock-rain-debug (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2d06f22646305412a369e98d2bca79aa51a5c48223ec3e26e326ab67cb75d6b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in apollo-redgiant-kardashevscale-pino (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08788ceaa486e98ffd1ab8b7ffb4dece829bf89d4a6f7042306de6eafa7c0ee9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in char-xml-xml-validate-validate (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c76ac411c304d6c4ff3a8efeea7f9fe5ac89b92dfa39c8e52594a2d41d9b510 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pipe-orogeny-await-kaus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2382b0c000b2e4514194f19d8259b7e578360d10c1531f70c0f8429921ac3b9d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in wasat-foundation-webdriverio-eslint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efd9a86d6be17cbc44f9dae6883bbba2e3a38738aaf80a503bc35aa86bebe5a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in magnetosphere-hydra-aurora-hyperion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d4c280da4088250a880f3beef154d45c9a4bd8505741d2c117a53f840d21031 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in isostasy-rate-limiter-miranda-chalk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8886bb1b3aa2881de5d3a090df3f702e15600943bd93f6e415c544b97c814926 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bash-load-fast-unix-route (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ecbd7ca201ba821c1a484ec5b1956590a49883fb903303e7ff401bbdf9ba78c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...