14168 matches found
Malicious code in @osmura/treeify (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4643c1f27e4916ea6090f1e6196c980fa1d65b96899a80b1f57633eaf16a61a9 The package republishes the upstream treeify library Luke Plaster, repo notatestuser/treeify verbatim under the unrelated @osmura scope, preserving t...
Malicious code in crust-proxima-typeorm-duplex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07c6c8e10cd58c712a41d9039c79673888315a901ffedcdff6a4a384ab7aa87f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in areology-atlas-dotenv-safe-greatfilter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30a274a73b2bf94ea441167c4bdbdd6e5887ef52aa83f8c6509c5c8349835aa6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lepton-husky-phenomic-hermes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc8e5f8a7b80fc50583741a5d4fe7563cb8ec3706c4e734dffb7de609c501073 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in exec-zephyr-xo-izar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0a537378001b9bae4498bb04fea101778d1e52997d9ef0b70e87f31e71d3122 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in runtime-stack-awk-visualize-monitor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29f5a4b7134730bc0468b4baf98a46892732f059846e6f73260ec464ed7e041f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in draco-gacrux-carpo-await (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e99af30e309e14cdab037f48e58b659c2e89b47c57ea0ca10d2d97b6c7f47586 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in iota-centaurus-blackhole-cosmicray (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe9edd2d1e8b436561ebe0f717ae927f48886e57234216c51efa7ee60e1199be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188919 Malicious code in proxima-shelljs-spinner-brane (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f7bd32ce89463fc87f2bf996cd96de28e6fa265c87a586e1414a63e912a88fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190069 Malicious code in unuk-mui-antares-neuromorphic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f1ec361b50b97c7e7b7ab5f49059900ab7878e6ffac9899246ded9fccc19d11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186181 Malicious code in cluster-magnetar-leda-scorpius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efac9c5584d5f9d128d2ef5be924c45f05b9f99c926ec52dd6d63c49abc7e2b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189646 Malicious code in standard-cygnus-quasarjet-joviology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb19cf1705ffb584bdc1a998b7a51dda974a3f7b3340bfcd9cde9529b2f87eed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189016 Malicious code in quark-charon-hercules-lepton (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8473c670a25ac2c4782e9d65c46e0a8158a9769fb0bb2733da88072b9a7a2c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185874 Malicious code in book-sanitize-cat-cold-class (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e62948a3099c031b544e79f768e8afc9967412595d8f9b895397d21f52fb7404 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186699 Malicious code in electron-builder-kaus-non-blocking-europa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc97f9ddff3d836878325e761ded0213655d4240acbfa676ac68ebd722f29c61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188473 Malicious code in orchestrate-grid-dog-air-route (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b71aac15729d4867908bda7b5b355123208f728af5b784bf36ac34155117e4da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187831 Malicious code in load-protected-file-index-analyze (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a5faade79c2776328e1710a3582b6ad746e9fdb934959e0c3bdca1c6f84b929 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187425 Malicious code in ignite-configstore-morgan-kastra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8906d0c8e8c3c3b8deed98d2a4f08dad36cbf617d92d432626f92cb068681443 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185617 Malicious code in async-encrypt-void-user-upsilon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7a36e99ef3a68fdfbc6ab3992a4fba166028b2c2f3e8f022aaa922e249f7eb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190375 Malicious code in xenon-release-it-telesto-jabbah (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 156c3f239097b5a3342ea65e94f1f7759096530b2c5377c81f15266c47ac3366 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...