Malicious code in @service-suppliers/set_selected_supplier (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eba319282947a6dfb83a31cec6127e62594cc16160bd9c74cee3feee349c4b07 The postinstall hook in scripts/postinstall.js performs two independently-blocking actions on every npm install. First, it scrapes installer-side...

MAL-2026-4391 Malicious code in @gad360/apothem (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f5e509ba6aa2f781391f03ff37ea8005440c1d1106391bdfa91abae06336ad3 The package's package.json declares a postinstall hook "postinstall": "node install.js" that runs install.js automatically on npm install. install.js...

Malicious Package

Overview pi-exa-mcp is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

Malicious Package

Overview terminal-prettier is a malicious package. This package contains malicious code, and its content was not yet removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

Malicious Package

Overview jsonify-bundler is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious Package

Overview ably-forks is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

Malicious Package

Overview https-emailjs is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious Package

Overview rt-live-hero is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious Package

Overview @onlytoodles/crypto-jsa is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packa...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

MAL-2025-180597 Malicious code in teate-thy-sonic-kete (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d7bebdc58e7aa6c0e617bcea75dd79de5b58d97be2fcbe7c61865dcbec62023 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-164430 Malicious code in polymedr-mindatas-burfan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd7340f0109feeee70dae28e2c551be35ea83880e3d85cd49bde444998602565 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ican-poke5 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c90a16c850a6e0a77dd1fcbca2498772f1c66575fa14926e719b81d4652aad03 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-143958

Malicious code in nabuf-otginagaf-dofajguaggi npm...

MAL-2025-147090 Malicious code in readable-pulsar-umbra-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6a37db6acf1eeb86d61cb6ee3336ecdd064509d9376e2b98857ad59d03c55d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123939

Malicious code in passport-io-gatsby-nconf npm...

MAL-2025-139442 Malicious code in antares-supervisor-kinetic-nodemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec376c7374c21bc6c2e7e7526708b9be627909142b8b6f8a4880b647e44265df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in xaver-enting42-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91aeb52df8a0b87e395dfddfe167ecb461ecf523de76480b59d18efa31798580 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102436 Malicious code in extraordinary_canid-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 126662e4fbc20e6e6e92cad1c717eb276b6d5951b8c7ea0f8587f42d1a1cb3af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-106138 Malicious code in naked_scallop_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e80d2c3df0a3da2f168d11ea52ef28ace9d8f272f55cd5aec9b8af3c0248099a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...