2114 matches found
MAL-2025-188272 Malicious code in nextjs-weywot-bioinformatics-selenium (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e21c7bbb3589182010dd1d9bcfb88841beb2fc6f908229b0a78e48f24a75fb9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189809 Malicious code in tardigrade-indus-baryon-axios (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75f2514afda20ff1f907f552513fb989fb4e0bcb04cdc483a5a11c2b968e60bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190393 Malicious code in xi-moon-star-fire-await (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 362014d5ddaa5609b560cef0f3912766ea90c9f16f84a1fd7f3d1750deb77951 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in uranology-version-flare-hydra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7590dbda8cfb7c763afc803e54f5eb4d59a9c4a1274d0a54bfd219c15fdcc6f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in supernova-phylogenetics-terser-abiogenesis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 869b9375b776171d4f47ddce1c89cbe87af6fe96e7a7980e9ae061b7cb416a86 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in thuban-zooarchaeology-norma-palynology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ca223ad610b7373f0f6839da1cc8836bab7633b5b4137db5b4f8ecd049eb12d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in runtime-short-fork-yaml-pipe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31da8d79938c0877172eace97de977d62cd6cef0bdb976f8e1c9a90372aa944f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in optimize-css-assets-webpack-plugin-polaris-docusaurus-andromeda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c44a99fabb4e0d5735d6d5ed781d797b9a5c415bb82cacef81f2cc52473301c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in css-loader-rehype-toml-version (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aea947ad56b347dfbca7085c787f5e8d56e43c3c86d54d8c56f6bb58e166be46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in capella-proxima-geomorphology-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a0a503ecbcebc9e7441e12ddf082270bfb761262e5edb8916dc4925b0eaf7fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190342 Malicious code in winston-writable-betelgeuse-jekyll (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 618dfd248d0e1ba6168342765507ae920fd0ed18ce8cf28a99a494f55683c3de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in europa-alphard-docusaurus-io (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abfd12c80aa354e4a81290deca797d5a0670d28e73a14c4d60a450ca24efb9d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in farout-colors-hologram-mini-css-extract-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71c99fa5451f2cc2dd0102d63f87d4f740d4e78005ef2ea86783a16a1d892269 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in build-perseus-repository-asteroid (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27053231811897d728e75138a8e6197e848557505ca26f8741717e627d78716b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189900 Malicious code in testcafe-postcss-europa-atlas (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0c0b587b82115b84377ead8bc9a56089abcc5377b44746e483ed6e69e89ec63 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in load-protected-file-index-analyze (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a5faade79c2776328e1710a3582b6ad746e9fdb934959e0c3bdca1c6f84b929 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in transport-semantic-release-cressida-middleware (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ad2ed4999afb8ac268ab70d6a37553264610fe139c6861aa22966b3183792fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189338 Malicious code in sandbox-hot-cron-query-boolean (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17f43a7ba52f6e7fb74fb6de0210186e218442b2e26082f0f97a0a0b065a03b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in async-xerxes-filament-outercore (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbc6163a409dce77356ebc5ac817d18a41dc29f36100b23bca2dd937c8af4a34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190420 Malicious code in yakutsk-server-hydrogeology-saturnology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94ddcdd1a39596600453c1286cdf1de0aacdad289f6dea9f82289d39605cad22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...