280 matches found
MAL-2026-3121 Malicious code in @taxmoninor/taxmon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42f9358f8af80b7021c6d4bb86f10796de5ad8ef2ec941d0057954b9e6a18355 The package @taxmoninor/taxmon was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2662 Malicious code in @automation-toolchain/f5-cloud-libs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bfc189949f1db0cdc70361f74210d6fe3f92c3e69ddad9491d9c7615465f9c6 The package @automation-toolchain/f5-cloud-libs was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-2867 Malicious code in arlo-meeting-assistant-backend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 842ae675e3d076ecc89e2697ee378f503945bae268487584277cd92a93ec44fe The package arlo-meeting-assistant-backend was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in braintree-web-latest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72db908797ea8aa5f2c1c6d89356499ed46b677379648156e795ee3049b24b20 The package braintree-web-latest was found to contain malicious code. Source: ghsa-malware...
Malicious code in vitest-environment-jsdom-patched (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e0d8ae07807d73026bd13988c3341aecf8375b53ae436d03f80110884c5d84e The package vitest-environment-jsdom-patched was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190803 Malicious code in @ensdomains/cypress-metamask (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19427e64315a085f7001dff6a896730aa4cce33cf679f6a2da0a8bc61e96fb58 The package @ensdomains/cypress-metamask was found to contain malicious code. Source: ghsa-malware...
Malicious code in emulate-private-alpha-decompress-view (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a73cd7def8995cb1c4f464021cd52d52ea06de08bba825ef6747549710d415d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186274 Malicious code in config-dactyl-foundation-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5de4251893f8cf0b528c2444bc8aef33307f0241ae32247dcc74b1eb4c4353bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190092 Malicious code in upsilon-fast-epsilon-optimize-interface (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d653fcaa0c2e1a74b8bf8126b95ed3b9284be21d307f766a0df8c77a468db28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sonec-kat-fidugafucfav (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31895d889007f313fd65a71f9d2f57c8432967a51b39e0b211dcb43808561f6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-181974 Malicious code in flights-lutag-obolavuli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e079b68dc56bdfa9ffd15cbe992e95dd06d20797534d15bc0cadc39c10045f9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in masv-ilo-cvaginanavcuovhu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b6bf98234a510609d4842689c608b6d543b86189eac3a22cb717f9d16784f72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in astam-ift-diuhgoa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f2a7c6fc6183aa7f09197d567126e5cc9c2323d4f1173ad451b08a732200189 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-184360 Malicious code in modiov-kihan-afibanihid (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21eaa05a59d01c789b7a2eb32242cf746885f223945daf4ce7ab9dcd55fbfc23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in roti39 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fda9be59d767a6d0be4efce2f0bb291f9a72fbe2e5782e0bb800b69bfe37d3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in @akunsansan0/karedok5 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fc159d1d03e8704f2eb85fa2d7bfdaecc9384fbf7fb4169accd8e9ae348244a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-181207 Malicious code in @akunsansan0/biru21 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a1b3034bc98367d6acc47ffaa2994a7dccbf56491763f2bd4e75da60c14f990 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-179855 Malicious code in lookingan-jaja76 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30d146715bbed35fc0e95e3058f1b3548ec394fc91194790b3d9a9ce2a0d4491 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-180093 Malicious code in teate-thy-py-pikec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3094be494cdf540e296751bd02112b46c74f9bb763298776626e5c191938d4ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-179475 Malicious code in anabuyi-inuznu-ninni (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 751c370874bf03224345809d33fa8a332a32e3d89d51f43086a47ff20c34d276 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...