1097 matches found
MAL-2025-186788 Malicious code in epsilon-beta-key-double-assert (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f0681495491db7e545763d456b2c3b521039fbd9b347d6741ec1d056df57936 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186556 Malicious code in dependencies-nova-meteor-mira (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 501435bf55002173c8f7d5b4c21b3d56892072239bd53de9e1caee62f283e9cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187582 Malicious code in janus-repository-acamar-jekyll (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c352b7dc2bdb562f75a203a60a62f9bd3e23618797491c44e1f3d6593927eae2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186358 Malicious code in cosmos-concurrently-uninstall-jest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7db9ff87e8f4868bcedc7df7de1ff3a93230d3a0a503ba209371cc3b10229614 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188386 Malicious code in octans-buffer-commitlint-config-angular-puppeteer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47310359866ad1e902cf5ea4d54ed1da4c69f3abbcdb2e4423b5f5b5984e09c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186489 Malicious code in darkmatter-pegasus-optimize-css-assets-webpack-plugin-andromeda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f5049359bccb7733c0fd183c777b326ee012861cd33a678a63ef401518ecc37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190142 Malicious code in version-dactyl-npm-colors (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector feefba00e2caeb92217dc071b9a4fe68188e1dcb407e37e274f1d84a9eb05646 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186557 Malicious code in dependencies-taurus-dotenv-safe-ora (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb5b2595b005439f28ca60b17c903b163cc631d10b922571145380eb57a965b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190373 Malicious code in xenon-prettier-plugin-markdown-csv-barnard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c713706c18d49eb384bd0bbed325910100ac359c57dd42b07ef52f54605e1685 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186654 Malicious code in dynamo-mini-css-extract-plugin-cosmicsilence-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce8e478555161d23346f7ff922f8c5628d28d7fb3aafb9004466f99613fec9ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188638 Malicious code in perturbation-blaze-singularity-hermes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71d94ee357e591d02062c95c64888251cbd977c18af9279759332c2d7380f162 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in node-config-callisto-comet-eslint-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b5635651be491b5fb17da64d0134d450bb553bf6c11fca9bc7157a5541ba26b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in chakra-ui-fomalhaut-on-cosmochemistry (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 626310491e4df1062e97b696358239f834cf757c5dfba5eeebcdb0c80a0067fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in terser-webpack-plugin-canopus-troposphere-ichnology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 584eb4b309bb6c33a1bc2192ae348841020f6161d30850480bc2940b43f92eee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in zephyr-dotenv-technosignature-uranology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6c213aacdb33c9710b0725f1700b663eb0a518bce1ee299951a5d392aa2e9a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in transpile-new-cache-iota-quick (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c5f768de28debbd6b75b7ca7af27a0d76a8d2e252a57dd227893aeb559ff981 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in modiov-kin-afbaufcaducc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f5999ce6f680bfae47868a925114f9a529d187e849b82a4039e2a3ba90125f41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lobac-ubb-avigfagu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25b7b65ab3af393482d0ecd44e8e5717f9e3d04b767e905c72ddb5346ff44291 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185229 Malicious code in soniec-kat-faverfai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d7f9ca3ce359b3f997b188c86ea2acda14e87f2d527927e9fe7e1edbbbb2477 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in modiov-kian-avumab (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4fe436dd8804dd9730ee7c0595ccc60184ec3b375fa08aea32aa5eebb441d404 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...