2729 matches found
MAL-2025-186735 Malicious code in enceladus-oortcloud-augmentedreality-cosmicsilence (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1be6fc81215391cb9e6519837e991bedfbd60da09c93eed5f1cc8fa4dbf37cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187853 Malicious code in loglevel-testcafe-spectron-leda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d18cc09f60af22ff0427f07e1bb85abd4ff926d818b7d8f0fc9656c316e1cb19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186722 Malicious code in emulate-link-shell-async-double (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf2c1b630e620fe1fa496bedbb43c8e83b304ef52edb5caa9ecd63d1dfbb13b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190191 Malicious code in vuepress-mineralogy-aldebaran-taphonomy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a174c9530c0b8fe98c44cdccf1bfa383d150ed11c2a1dec533c5293ae03557d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186609 Malicious code in dorado-norma-sequelize-hydrogeology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c5310268f12744e307ddeec31c9193e9e03f4c09638606993ade4b4ceae9989 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in upgrade-quantum-computing-eslint-plugin-areology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65f24884b7f8123dd633e86819d246df7e79be71c3680536de53b2cdce89ba5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in local-terser-postcss-loader-eventhoriz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34b65bfa47dbfe04c6f4b072ca313e3d49adb15a955a7b43a2c1fe3e2dee460c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in aldebaran-halley-eris-rollup-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ea1ee1c5006e870f575cd778508830625614ac4f6ee77b64e52cd1cf8e291c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in new-decode-process-orchestrate-balance (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45e27d28f9ad2788a67a1929e3d71bef664870e512e39baceef376995e2cc8eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in jasmine-metalsmith-schema-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a67d95657794543c0c975eb63112589e29b6bcfdff3feed460227a8b21843de3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in husky-bulma-nebula-concurrently (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 029de86705f76c06a577e00966fac5cdab3d36021be7d50cec1844bd03f7b785 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cross-env-native-centaurus-dynamo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c6dce8f7485566682baf52e3ddd7d582e7a2d2645f17719277ec2beaf0b8c56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in axios-mineralogy-pyxis-janus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 363a084cb89546d1716a8e50fc4400ad1e5f3cd26c06fea728164d97c956c8b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in await-float-optimize-route-omicron (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8e098a6f9822425661851047a431e132cc1cb8d102b241a0dd8972f13b4bd22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in taurus-deimos-package-toml (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fdb160245be134cc43b3db4192ef85905aace2254ef9e168298ee0cabe4239f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bad-transpile-xml-signal-cache (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98b31e71ed2a6d4bf88c6076c957111d72558e44d36bf8a63e906f6074f9624f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sun-bad-assert-secure-protected (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d895d4b0345e91c1f17b7dcbc0cb8bd298eccd311b392650ae6fc5dc7c9258d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in changelog-gridsome-perseus-css-minimizer-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 133334c5bcc682926745fc752255a3c1e4da48e8c1e07925a14d0f505ea7526d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in virgo-arcturus-hydra-stream (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3200001e1e1fc337325316bb47953dad6b0ac3394eacacf5aa17ccdaacf52315 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in webdriver-manager-ethology-kastra-biotechnology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4d50f3fa880cc105429f154e2bc09e5b09429538db303307688c9609ca30e2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...