3460 matches found
MAL-2025-187628 Malicious code in json-stream-aquarius-cygnus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66572cd8192992ce672eff5d89b4844980b864c0c831f139d85634cab429b063 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188757 Malicious code in pm2-dorado-lithosphere-gravitationalwave (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd0bf0122bf53ffd695ca74ef50913f10924601962d70f7e2efee47d07ce23d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190042 Malicious code in umbriel-ariel-rigel-metalsmith (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5c72945619dda01a368dfe59be292a5a07f66cf7ed86d55dc924a54ff02d902 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188379 Malicious code in oauth-zenobia-mechatronics-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09a302ded4491038396a7065140b8b3fd0cb60afdd87d680b8a4d45bbf1a26e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186826 Malicious code in error-fast-class-visualize-new (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29ab6287114c993123a1c774b449f01bfe2dc45a5f5b310517d84dc224ebd170 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186668 Malicious code in easy-cron-secure-thread-sanitize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6d9a4e75826baaad3bfb8184f3a94bbff375967fdd2b655b15a9b74959d6387 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186863 Malicious code in ethology-zephyr-dorado-browserify (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d6ada6b7366b59dc664dade1f8bc9f3d3c48b7518f8ab2b2d715a6cf873db80 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190082 Malicious code in upgrade-async-forever-nextjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75caed0ce1fb98070ff3b33974aacb7b1939cc7108213d2042323c1aa276575d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186161 Malicious code in class-secure-function-transpile-authorize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e28b11cbe99b65195c5c3d27c542888f775612a52a9dec629226c3caaf70c27 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188161 Malicious code in mysql-heka-version-saturnology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2111a15423e5ec2213bc83b5a7ef30ec0580c5fba728b2b7a7a02b828883b69b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186302 Malicious code in convict-writable-webpack-cosmogenic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d97564ab9fc4db43f4230b9d93ccc412d62ff1b73b25e6ee7eeca8c3f4298df7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in figures-archaeoastronomy-hadron-enif (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63ae70a518089c6ceb6593edb3b798ea5e1e93fc9ede587652dd6e24c212556c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ignite-chai-mira-neptune (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ce891d93375fc44ef940ba2e552f0edb96f80dd9d0738d90e22a7a411c2fb82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in paleoclimatology-hydra-schema-genomics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 790e79965034e461bb2ea78fcd7d8d2a4d35270bc4f34ab6bb58bdeca578185a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188543 Malicious code in palynology-singularity-multiverse-writable (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ddf181405e98b25615c7f5560a96bf0c66c7f8b1fbac3fc96c374237655bfcd1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ursa-eslint-gemini-vortex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1630e5264385a9c74585ac7083a4b36aafec62504d3d7b3b68157e82eb2a04b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eris-sync-loglevel-dorado (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eceef989feeada3339ec402d1445f185a3b004a1f1c1c4a71553971739a38d8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in blitz-materialize-link-lint-staged (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cd6558b44eec2954b20bb99ebb1a7e8e455149631179d6949c5569bd11e1822 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in readable-configstore-regulus-public (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa106f845b72360c2409496dfe3d10196e362e64b56e8b6839e6b3c82bb06a32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ophiuchus-polaris-mineralogy-proteomics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6990907cf478a6777456e1509b1e4616038bb303ecad91eb09e0643fa34aef14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...