1233 matches found
MAL-2025-187206 Malicious code in graphql-nightmare-css-loader-abiogenesis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 827a1eab8ee4f7a8518854247fd592f6a76ba721ba6900d144ce9f687b27a255 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in auth0-scripts-slides-build (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bae3dd049724262a8f2ef9d0819f09a1d834c89820f442c9d3f8332a4b2806f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in phoebe-borealis-vuepress-coronalmassejection (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deaa586f7a513b8036116d867f85c2889429e1affc2ab69c5e417d09987ff2ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sed-node-shell-long-authorize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47dbea484e2f034bcafe78fcff9695ca55f3168bd8a89e8c7efa26d6412c6720 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in geoarchaeology-superagent-entanglement-semantic-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e6f7254bc5c1d8873ad78828802972fdf108ab7457ccfea0b3675f7c3c6ed11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dynamo-mini-css-extract-plugin-cosmicsilence-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce8e478555161d23346f7ff922f8c5628d28d7fb3aafb9004466f99613fec9ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189115 Malicious code in redshift-run-script-chai-koa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5286f36483bbe7228cd4a81c89c18519248a77be151e2d05f127fcabe320b31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185895 Malicious code in borealis-hercules-ora-lyra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9629f8a43475f540dbda3704d798a24991f7120a96a82ddb110b11d79e356e1e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189489 Malicious code in sigma-query-interpret-phi-process (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3a99585f843fc934bcd70b362cd9255963bc313216a20084ac91a6471106bb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in optimize-report-pi-module-hash (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00eeae1ab2bbeca7c4cd632577cf6916c3401c525a645b193b91425590b719a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in global-gridsome-oauth-supervisor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4e9e7cc1e7c42481f808804394b0a8b7ae377b94f9d631eda6a135a33dbc5c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in blueshift-kuiperbelt-asteroid-dendrochronology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6529f5366e3712b3bcecb53700bba7cdc4e0d404e2d5487dc5e3255f0093eef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in procyon-procyon-xml-planetology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98f22cb07a609a28b005e4e95f1395efe6c1caa1b328526d3412489ff07456b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in quantum-computing-server-phenomic-miranda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e4eaeb6ca6f3e7e8583b6325db4dc2405956f5cf99b5fea3fa0a71ec3990d93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in isostasy-meteor-passport-npm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5750188ffcc6bfec77673e3a538523e10dc0a5ae302b71417fee0574355e6209 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in venus-epimetheus-halley-json (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5d0ce58004f4853ebd835af1a1ca2e27dcc4bb1b1cb75811f3bfec1c331fb9d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in selenology-zenobia-loglevel-prettier-stylelint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d2c2038273686ad4e4c976e60b166c18b1148952183ab5873e7216c6dc12c25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in apex-antares-polaris-cosmology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37d14b374c2e4ed828cb310ce2dc54b05a5bd88eed2f4f3a9b85637b71310abf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in csrf-thermochronology-oscillation-janus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23992ff1d63ebb87f14b33af1af9f888a76886aea879d7893bbf8d971fb1fa92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cold-dog-module-notify-good (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4c83bd10b2435c6dbd483122fd890dd154abcfcc705f21736d501c33135c704 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...