798 matches found
Malicious code in file-decompress-gamma-wind-object (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c18eb3d3f0daa811ce492b9531635f4cef64f89da0a246e6005ed0a1dca836ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gatsby-apollo-sync-lyra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee47692086d9bcafefec2a4f2f2b13221504e62731ca39a928a5cdf8089dd14a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sirius-nuxtjs-genomics-hydrogeology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cc894c78e9b50984595b19e8286f089a9d7ac67d3a4a9c18e378807110f33fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in xanadu-ganymede-thuban-polaris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee9f8b8c8bd97eb72abbfb618a0776afb1768b178f6a5f06ba703621965be9f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postcss-loader-install-thuban-pipe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 778749957419a4be0f2a22c512b8fe2d8c4492150fa5d08d04f64eadb7e70703 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in babel-ophiuchus-mira-bellatrix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 291b6aeb47d975e9c581c055a5fc588f2982e746b1eb66b2ea5080cd10619df6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in zephyr-leda-procyon-pegasus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fe90ea46f9c1ef07ae94408ce10711a106d0376ef8a4fa2d56004aa48135a37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in execute-char-char-stub-serialize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fe5d9354bb43f2724bc7efeec94e26f50bce0f7ac425402af053df136cd5c11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in antares-procyon-xenon-solis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7abddecc25f1220eeceabb1fe7418b88ec3fc540c529cd4130cf53050d96271a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in quito-config-lightyear-quito (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2774879e2c0a7ce0d979c45203cd24a0201a338f4a913577244ee6c095d46e02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in astrobiology-postgres-comet-vega (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4f9f42d7d970e9c3621b2c6627763137e4234a33749995cc474e82e2e0214fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in winston-html-webpack-plugin-hologram-meteor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a9afe8f4ab2829ba5b5196f1795f383340927d445f5df8c4dafeb0d41be9b8f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in xanthus-tectonic-levels-xanadu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d90865d557f01264ee242fb2dfeabb200ed169fc59c91f5f3edb8e2e08563342 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187591 Malicious code in java-orchestrate-awk-process-virtualize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23029396724af0865eecdd010c3f17e6739fe0ce56c8d44b3531fbdeac934801 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186507 Malicious code in decompress-tree-protected-upsilon-mu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f54cb13086872fcb5c3e171f126f96d2723cd7ed4cb0febfae9e2db744d4d97 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186103 Malicious code in chalk-soap-eris-mini-css-extract-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9dfb806249dbb13adc7a707fc35469c24fed0c44496bb851f9c5dfff3945dee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dotenv-safe-vortex-meissa-webdriverio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90fb944cc269795d653356deba7764bb80e34801218d14654f3434c39296c5c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in final-daemon-route-boolean-permission (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61f8334b78cd08ab5b888c2e351b37dd8221311c010e1d1b12e973d3ac9d0367 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in geomorphology-cressida-sync-atlas (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11711063a044e5d7e1bc0cfa7de9648f003912b46d0a0be5861aae49d90d7d8f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in try-signal-lambda-execute-kernel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff58345af7f94838fe702630b47bf18db37968f47a7626a391421cf46ad542f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...