Lucene search
K

14168 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/26 9:41 p.m.9 views

Malicious code in @osmura/treeify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4643c1f27e4916ea6090f1e6196c980fa1d65b96899a80b1f57633eaf16a61a9 The package republishes the upstream treeify library Luke Plaster, repo notatestuser/treeify verbatim under the unrelated @osmura scope, preserving t...

5.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.10 views

Malicious code in crust-proxima-typeorm-duplex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07c6c8e10cd58c712a41d9039c79673888315a901ffedcdff6a4a384ab7aa87f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.8 views

Malicious code in areology-atlas-dotenv-safe-greatfilter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30a274a73b2bf94ea441167c4bdbdd6e5887ef52aa83f8c6509c5c8349835aa6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.5 views

Malicious code in lepton-husky-phenomic-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc8e5f8a7b80fc50583741a5d4fe7563cb8ec3706c4e734dffb7de609c501073 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.6 views

Malicious code in exec-zephyr-xo-izar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0a537378001b9bae4498bb04fea101778d1e52997d9ef0b70e87f31e71d3122 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.6 views

Malicious code in runtime-stack-awk-visualize-monitor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29f5a4b7134730bc0468b4baf98a46892732f059846e6f73260ec464ed7e041f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.7 views

Malicious code in draco-gacrux-carpo-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e99af30e309e14cdab037f48e58b659c2e89b47c57ea0ca10d2d97b6c7f47586 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.6 views

Malicious code in iota-centaurus-blackhole-cosmicray (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe9edd2d1e8b436561ebe0f717ae927f48886e57234216c51efa7ee60e1199be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.6 views

MAL-2025-188919 Malicious code in proxima-shelljs-spinner-brane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f7bd32ce89463fc87f2bf996cd96de28e6fa265c87a586e1414a63e912a88fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.3 views

MAL-2025-190069 Malicious code in unuk-mui-antares-neuromorphic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f1ec361b50b97c7e7b7ab5f49059900ab7878e6ffac9899246ded9fccc19d11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.4 views

MAL-2025-186181 Malicious code in cluster-magnetar-leda-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efac9c5584d5f9d128d2ef5be924c45f05b9f99c926ec52dd6d63c49abc7e2b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.3 views

MAL-2025-189646 Malicious code in standard-cygnus-quasarjet-joviology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb19cf1705ffb584bdc1a998b7a51dda974a3f7b3340bfcd9cde9529b2f87eed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.7 views

MAL-2025-189016 Malicious code in quark-charon-hercules-lepton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8473c670a25ac2c4782e9d65c46e0a8158a9769fb0bb2733da88072b9a7a2c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.5 views

MAL-2025-185874 Malicious code in book-sanitize-cat-cold-class (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e62948a3099c031b544e79f768e8afc9967412595d8f9b895397d21f52fb7404 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.2 views

MAL-2025-186699 Malicious code in electron-builder-kaus-non-blocking-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc97f9ddff3d836878325e761ded0213655d4240acbfa676ac68ebd722f29c61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.2 views

MAL-2025-188473 Malicious code in orchestrate-grid-dog-air-route (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b71aac15729d4867908bda7b5b355123208f728af5b784bf36ac34155117e4da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.2 views

MAL-2025-187831 Malicious code in load-protected-file-index-analyze (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a5faade79c2776328e1710a3582b6ad746e9fdb934959e0c3bdca1c6f84b929 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.6 views

MAL-2025-187425 Malicious code in ignite-configstore-morgan-kastra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8906d0c8e8c3c3b8deed98d2a4f08dad36cbf617d92d432626f92cb068681443 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.5 views

MAL-2025-185617 Malicious code in async-encrypt-void-user-upsilon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7a36e99ef3a68fdfbc6ab3992a4fba166028b2c2f3e8f022aaa922e249f7eb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.3 views

MAL-2025-190375 Malicious code in xenon-release-it-telesto-jabbah (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 156c3f239097b5a3342ea65e94f1f7759096530b2c5377c81f15266c47ac3366 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Rows per page
Query Builder