26754 matches found
MAL-2025-186367 Malicious code in cressida-cybernetics-rollup-plugin-node-sass (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae7b624253f4701adc0d6788e133d422ccba7de259ae6dc18a12697f8594e8e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189205 Malicious code in resolvers-typeorm-dependencies-development (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5dd2a238d88c0adffe27656503d08c62254216af2d36d818b92df13f4db3c0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in miranda-native-alphard-browserify (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d87962789ed9ae812165f1253ddd66dfc007bb8159135fc21ee856412172029f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in redgiant-callisto-altair-npm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c52623704e8e59183b20b689afbfb07d866c14348d1b2354d955944d41d54d68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in alphard-fetch-electron-builder-levels (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e9630f529c3a2decf0296dc89c233694d4d75a41419bdca5403cc0224582f52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in izar-mini-css-extract-plugin-hercules-nightmare (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6536a29dfab966492b09b2edeb0b4ae69f3011304e1a35a5d640f66472abbb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in apex-tool-colors-cz-conventional-changelog (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89c62893645bd2284f60d2079d955465a378a688d945047e235e72710ec44a8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in exec-antimatter-jovian-postgres (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 081e854fbceefba63e765f5c1e12b63030ea5aa297f5d9ba7bbe5e1ce7be5c96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cors-google-mocha-prettier (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d114af8d971cfd46a6d164d73ff566fcc20fb9de50a635c47f8b650efeadcb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in async-kastra-archaeoastronomy-exobiology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7e414eb0afdd76c0390d3282431a6f56f9f3e4a0fbe0d9e603e669ee3c4c905 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in superagent-singularity-singularitarianism-vega (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cbdaa1d54bbc61f1ea74857628bad1ed29b040508630d98c1a955535b5c8217 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dione-transport-astrobiology-leda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db00f98de7eade5747ea89fd288d9cf3c55ab2e83b1e222f85efd13281d9d297 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in interstellarmedium-uninstall-update-paleoanthropology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a27dfae1f435d514596ef076dcd20c9703652042ab1c0be57dc24796470a1d56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mongoose-cordelia-hawkingradiation-antares (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ac29acb2d20f00029ac7d544cba9f2a1988d23b897f9de38df6c3977ba69ff3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in zero-epsilon-bash-cache-query (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6280f9e3200c2b9b148b3ef23188d465afb54b42c349776db1f524c284f9671b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pegasus-pulsar-plutology-astrochemistry (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7119678a00523fb454aee015dc8349a8b07748c775b4a6d48223cfa6da03a0d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pyxis-sedna-nebula-sedna (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4823bf41ec4a01879644b67982d2191ec56200286016f1e4a400b8bb207c878 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in relay-tardigrade-typeorm-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68e65873a2865720e808f1d146398547f6af6787ab402144f49958f3ae3b6e90 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sass-loader-lepton-nebula-virgo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a989216a806f4fc710f35ceecc76f72ebca9e42cdda321d10df6910124e480d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in spawn-scorpius-antares-hexo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5bb9bfadca6d920bd34d364ac84ad6c3c22634e0fe9682e0ae3301fc85d6dfed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...