34 matches found
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Malicious code in orchestrate-process-cache-data-async (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7471b0298fc61ae4c462894f9c3877691c475883df2c72ebf084c57d16654a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lookingan-nanakila124 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f04d34566a033e4e508cc5f6f41827660341d8a9462acbdff1cb407374da271 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-178123 Malicious code in polymer-tresfd-sdf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee556898733c9ccdf1e45d3f170325bcf535a7af9ece4aaeb2aa2a6254b60daf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-175305 Malicious code in kapvino-sofagfgdi-ugaaoha (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11d7d4c0e5b5d88cc4cefe7cc2a162aff7e7f38dd99f297aadd4d9bb9aec8380 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-174503 Malicious code in goodan-ngasa-aanafau (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d5e06a16ea10bcde6ed1476a8793710b69aaf574de1b175dc39639a79e0b5ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in huda-poke18 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c6ee907ccdcd908b7402b6026a6350a9728fe0cd2689624c3d91891cacd5a7f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-164553 Malicious code in prayoga-poke8 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a42b3ba0e49941ce652db5baa4ca0e578b4b4d598076df7052c09a50b4911b90 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-167796 Malicious code in teagood-sukuna42 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f46de616e1237d921e37c977dbbd574c7cf65b8a018731e758f3348ee633920e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-166661 Malicious code in tadasdhi-ert-erty (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b48e1a3b924d141b29c8dea4cba185bbf6a4e5b5d7e8c17142d0d88f2d94831f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-138663 Malicious code in diverse-tomato-piranha (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09cdfbc7391bc8518fc084dd05454910e1f90cd03774a8fbad364eee9ed38849 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in formidable_gayal_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52332387d101113548f5fbaa09ca8b472cc597058391a5b5fc1ab9f461010e63 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in riana-kue22-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa68403d1f9abd1de8cbd9250b65778a0897a86439ea057c2f1d141a756f813b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-130346 Malicious code in strict_bonobo_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb83f29b04d98860b80559b5cc188c5323bf88f31c37083f20f02d1f452bed46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in okta-keraktelor25-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93d070d81d690261f65255c809aaceef9b2ce61e6efcf1b62390cbe88724a99e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-113143 Malicious code in citra-tahu5-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e4a70a2f07fb5d50b3a348e76816a52c7d968ad9ae67ae3d52bb76696c8a790 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...