443 matches found
MAL-2026-5178 Malicious code in tronlab (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 44a6e385a64a2319d00a77e4eb063dd97f8a54dff9df20653fec1f3c3d40ecb9 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...
Malicious code in @cloudplatform-single-spa/svp-gateways (npm)
Part of a dependency confusion attack campaign targeting the @cloudplatform-single-spa and @mlspace npm scopes. The attacker npm user mr.4nd3r50n published 139 scoped packages at the inflated version 99.99.99, which resolves ahead of any private registry version via npm's default version...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code that conceals a credential-stealing payload and worm propagation logic. A malicious actor associated with the "TeamPCP" or "Mini Shai-Hulud" campaign compromised a maintainer's access token; this allowed the...
Malicious code in @catamania/ui-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 326cc4cf1fbe96c77b6340df59ebea040cdd522e3e4bc76471563190044cf53a The package declares a postinstall lifecycle hook "postinstall": "node postinstall.js" in package.json that runs automatically during npm install...
Malicious code in install-enif-blitz-supervisor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36141e3666f8c066649d564f1f74956d7c95b2120dc6f9c0abec69c4a3bfb1b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in json-docusaurus-terser-aurora (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2a92e7f61c80858f54bd20a3fd7e937f27f7d9ed09ec3e392e39a2ab47a204e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185386 Malicious code in adonis-cosmos-eslint-plugin-izar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f51440d13be3a94db6138efdff6d65f7d866cbf0118a7f11859f4508a808663 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186701 Malicious code in electron-builder-pipe-markdownlint-nextjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa590854af1589f753368b9047a4503bc64b6412f3131f3d2bd13cf72a2f6e26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in child-process-loglevel-elektra-eleventy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04f1f20ab80f61e2c11b6e61e7bd034a3429aa7f420a51e4919dc9442576a50b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187619 Malicious code in joviology-nuxtjs-ursa-lacerta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 737dee137a220a82e1a7d331694f492c4100fecf3c4335d253e40036ec0cbef5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186748 Malicious code in enif-blitz-selenium-sedna (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6263d90a50f469b364498e2b135964186baddc756040588a3c53724888fa7b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in forever-cypress-public-package (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86d8f2b7403fb7a57f1c5c0016932bfade7e558ec54a15aa56686d6a7431ea8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in entanglement-australis-event-leda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fe1daef2ddabff000c930f4c64f389381e92e08eed834fbbb30fe6bb729393f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in resolve-code-sun-sanitize-fast (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abdbdcc8fb619c74fdb9b14089fa86dadcd27a20aad53d18bd359bd1f2d0664b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in epsilon-web-sun-test-easy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdd652b50760b6e4ee9f23c1e49458af2a6acd3de287e674fe9d08214715bc85 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dendrochronology-pm2-chromedriver-orogeny (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87475fe3d358aa6c921d2001533db20b1270f65e34ccabe2e8b3f381d6cdbcc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185917 Malicious code in browserify-sedna-apollo-airbnb (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9274311e3df04e5c51c1bd2fd4419846f61128c31217b919fde8910c9c1e8e08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187102 Malicious code in ganymede-levels-changelog-norma (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4be57e2d19eef99afd220a750db064df4bbc79106573179cd8f3529f363bbaaf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189917 Malicious code in theta-yaml-compress-rain-star (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8013a642dfebede233931896060c06f35aed6cb508521a5070519d705a68b88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in commitlint-resolvers-procyon-pm2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c84a42a0bd7b27857197441ce982e9035d4e93ebf009d7bb23942627d9ce0b70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...