1623 matches found
MAL-2025-187379 Malicious code in html-webpack-plugin-version-vulcan-rollup (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dde5432372bf813eb46eb9929fc1e8fbcf613a4f116a4677f9fa73a2800edb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186856 Malicious code in eta-refactor-execute-float-load (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 125c0784edb26ed9465dc8f0823e5ba03e9837a8cdc6f261ca03fecc79fa65c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187627 Malicious code in json-protractor-nestjs-auth0 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e9e51fb2a7e3a96397a4f164c00e4a75d72efd329525fe13fc14a9c7ef50102 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187641 Malicious code in jupiter-fork-axios-magellan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d618233585daa02221533466a8b12423cd094f4adae74b7a5095bb9e211871f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in singularity-bunyan-eslint-config-publish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2283510842946d2aa3d0b25e8270ce1e0e52b912769d3adadb85a58493c5e67c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in miranda-lithosphere-xo-alphard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f1eac87038018d949f144f833ce309a39c90f8dff7dca3d342001cc46bd9217 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in meteor-zephyr-singularitarianism-local (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbf663c1c4d592f31696d9f7ab303b72a72c78546f1da93ab4fdd728360767dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in astrometry-postcss-loader-mineralogy-uninstall (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca444498c36427713db81e6375390896a4f50a84c54ef6a52a73cad76ca35971 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dysonswarm-apex-graphql-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00edc1420ef60c8781c29b4cfa9b3d8d0e4928fb48176c0fabe627e881d70830 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eslint-plugin-fornax-auth-dactyl (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be26c82a94b33272a9b5391a0f7fe3a8cb9d572639e42301d598f6ff497f416c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in html-webpack-plugin-zenobia-nebula-antares (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bda7c207337434698205e1a554e373872174bfe0253efa98b12e47eb140c345e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in quantum-pegasus-winston-blitz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67fb1c058e5116640414a75f741d609712e320816ee67dfe77952386a9db1222 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in graphql-elektra-triton-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f32d98eba6cf6a31eff8d8c5f67b0544f7ea9333a54ebdc237767280fcbcf553 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bellatrix-gulp-barnard-dagda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0f7e32234b92867f6b230c143440f62bc1655f5c517cdf17517f6c027d7bb8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in commitlint-betelgeuse-yaml-indus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1334745017722dbf527ff416d1e9f97996036c5e8c403d3a34945f517279cfe4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in html-webpack-plugin-vega-atlas-fetch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72fd14fbfa7df3518df196ac7331d4c07644a19e457f73f31be91ee9ab01ce42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rate-limiter-chalk-miranda-cassini (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97dbf12820a23efa6071dd559b66e1fce9c4821a398877a4c63e432d20b01f2d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in container-tree-signal-notify-permission (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b71d5038f64d6e372dc504ee04667b316a274a372b8dddb45c2cd8c93fd779d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in scale-hot-tree-cache-execute (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca31f523c05889fdf9ef41a4517c7fe41532a653c9225ca1d2fc0b4f96c7b705 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mu-dog-proxy-decode-unix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88cdfbf38d06291aae96e832f05b29f00cfd35589943f585837dc348ec6b1fce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...