83 matches found
EUVD-2025-111487
Malicious code in magellan-concurrently-markdown-less npm...
Malicious code in barnard-chai-public-loglevel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 244f19577d367fc4d0fc720af976a8d7063e66a4eb3209ecf31de69fbf10a580 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in command-xo-ariel-atlas (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a366c080a4eaa2648f83bcb94435f3176e85614a052f24641242493394fa733 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in magellan-miranda-element-ui-npm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 478640b4176788ec26ab2af3eaf3a84218eefd1aacee687df057a7012d20be8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in terser-webpack-plugin-eslint-config-nightmare-native (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83514a209e4c2489491a7e5fa3f9da4da2466d832fb191284eac4fbc6f3b5ee6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141245 Malicious code in cressida-soap-atlas-eris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afa32ebdf6c7a36c0fbaa79db2bb78384213d5a5f64c6f78fc4f2811bc97f85c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141590 Malicious code in dependencies-xerxes-gulp-equinox (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca524df6fe30d9a679a3caf1797ead4065707ec93bdd4b4321abec7aa38cffdb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146641 Malicious code in promise-graphql-start-superagent (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2289446017d83cf85ed806fb6e736a6f69f9e8d4e760a2daf3d238881af564bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in qori-nasisayur57-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61f0afba7875fd9189e704bd3aaa34bd90e37acb508d8dcfa5980be36749d728 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-135635 Malicious code in mulyono-oblok22-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 248e29e57015e16f38d796ebe56bbce5006f5dc236dd7667c00e8312442aaea8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-131257 Malicious code in wawan-nasicampur79-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e58225e46690990f6e64b5c924d2c5008d21fb795c96b3ba0aaafcf779e9c270 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dian-ruwet21-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63250df8a6c9838e32a0de971a71fff7485174329103961284b593c3b99c166c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in joko-lapis89-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cb6151d106617a16094b40c8709f00b8be375672b5ca39ea614c211d9926c93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in maya-kue29-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8427101e4940a45be0375d6631eae889240ecb8e9688e28d1d88933e4b00047b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-97627
Malicious code in joko-tempe29-riris npm...
MAL-2025-131781 Malicious code in zaki-sambalado88-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53d9212b329b7283740a174342c6ff76af3c0f157b9b51730524a1a9c79f6200 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eka-kue10-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47a330b3541b1f257622058b7ffaf9e94373c03c4680af91b835588b5837648d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in likely_gamefowl_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 244b20979aa8afe1e8eeaaf6601d5a73d6a8be90561f4e977caffe1682c8e8ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-118738 Malicious code in angry_chipmunk_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d79809a8a7e0bf2564ebb20edb12a69fc0358a942768fa8a90818dd721e2d496 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-120020 Malicious code in fauzi-rangginang53-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de5f24d4898f6a944693bd7a02dd9b9729504a986c16d3f784808b9dcd28f3c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...