1097 matches found
Malicious code in node-config-callisto-comet-eslint-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b5635651be491b5fb17da64d0134d450bb553bf6c11fca9bc7157a5541ba26b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187303 Malicious code in heka-buffer-install-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d173a46b2222709ebde51168c15d95d657b1e4e9bdebe6edb1073438c8838fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185639 Malicious code in atlas-ophiuchus-palynology-bunyan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9199776326ba6ad1fb449283394108e2cfe8a046a1fd232be90dc0ff164706a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188386 Malicious code in octans-buffer-commitlint-config-angular-puppeteer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47310359866ad1e902cf5ea4d54ed1da4c69f3abbcdb2e4423b5f5b5984e09c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186788 Malicious code in epsilon-beta-key-double-assert (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f0681495491db7e545763d456b2c3b521039fbd9b347d6741ec1d056df57936 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187284 Malicious code in hash-table-enum-debug-unix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92e9db4a5d7ddd918c7c0ee403554f86845cb7da929c3225fcfa88c84dd5d61a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in markdown-prettier-frontend-avior (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 659e8b9f5234bf3784b1ddbfde8f82519b786322f78a3a6131c158daba967810 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in chakra-ui-ophiuchus-sublimation-readable (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 44f618e732db8d3ff69334d6194da83ee2d0ecd8d2a83ac60310bfeae1aa6068 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in biogeochemistry-test-express-css-minimizer-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80da7adfdc662484fd92ec3d26801045267dac8ca72457ceb3555b61f87bbbc9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fornax-local-gemini-zenith (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2f8f9b559ad10d6f12bca30ea4b8ecde5143e517b27f5b4d695552fd03ad93c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nodemon-slides-frontend-tethys (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4161a9733ad0657a992b0e3b792993775b939fbc4452872a0be0abdc96d50eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in centauri-leda-playwright-cygnus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7671ad2b6e8453e44752aa7977970a925b638a23e89cc48acf0f5ed0d5abd921 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in comet-auth-html-webpack-plugin-request (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f5b037c3a10e0eb5d63054a411dd6a2daeb791121c669593b5602687a52454b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eslint-config-nebula-magnetosphere-vuetify (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81e6dda4e6b8dd0db13ce9bb06eded94758780774f45b2f7146e5518fcfcc8cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in init-charon-terser-upgrade (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3508eca342f082f4e63f5a94b88316894ac60ba0b8e0ac588455e64488807bcc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in koa-eslint-plugin-corvus-dotenv-parse-variables (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9921124b23b8c3333632e1a5ad8852823bbc42e2f37bc4ab4272265763d84cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in native-rollup-plugin-sagitta-tectonophysics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00d49cf4e544253b65eeab4ed53118e7a101dca71f9c8857859e37df800820da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-sass-nashira-xerxes-css-minimizer-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aac38fa2821b6fdc88b06b5e178d5ebd9e620d2b13fb68a8d89bb70c1efd4cb1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pavo-auriga-jest-apollo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2636dffbcb00a70df12da05821d52ea1134e1edf132ee3bec849bce1eae714f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in petrology-module-australis-apex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1aedf2a100eb1fc3c7c3a325af0c6969e95c447adbdebaba9a1c2b6f0b869ce3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...