4033 matches found
MAL-2025-188356 Malicious code in nova-quantum-protractor-commitlint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42b35d5356afc081638f9e5562655901df31ef1d90eb6c13779454805d9ab8f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186041 Malicious code in celeste-archaeoastronomy-despina-vuepress (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8c86b174fa7f441665264408c849b5a246c6da4cd40a9e62d57bbf70b68a32a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sync-uglify-js-rest-superagent (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab95b633e6385faa2ae97803caa076c5aa6894ce8f5a472eb6441b96ae2ea32e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in shelljs-fermiparadox-bootes-xml (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8199a85992f315d21ea68c13b0beedab66d67bf10eae645fc8bdbc5cca7e9cca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cli-holography-bunyan-telesto (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b99709cf279a1a0f87117719e8b2cd54765f1b9ed84a6db8465fdf46399aa064 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nightmare-version-levels-mui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31a297fae66d552bead526aba85b7fe7db06f9336bc28adb7ec24729c055c79c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in babel-dynamo-loop-terraforming (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77f7e19562ce05bfdec5a4c7e13077d54506b47b9aba65f096d2a73b18dfb64b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187177 Malicious code in global-cassini-hexo-flare (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5e8261faea100870ddc8b1d2bc37fc01e95b83d8331ba91092d10e31091009d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in optimize-css-assets-webpack-plugin-terser-rollup-plugin-registry (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9abf544e29423b7c4a79b3a0794c0292360330e730a5ed59e506c1cfdb40799 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in middleware-exec-callisto-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60905c35a7066f9f04d69342a0d5643c9cd2ddcecdc2b3cd3e20aa82208a84f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mocha-epimetheus-zenith-commitlint-config-angular (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2dfaa8c873e43d9d76a226426944aa33e371fc2d3ce57d6b8ca52c2611cc2c01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in publish-postcss-loader-achernar-hermes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7167bde1de257f069e942b993e91cae612193ea9171edcb8a7f3df6aa4653c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in alphard-gatsby-commitizen-node-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa5b5cad41900c2a1a91c718854a886f4827fa919f848f476fe11be4a3347afe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nucleosynthesis-standard-pulsar-non-blocking (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83cf65d391bddac395577093159b8c072f9a32c009def52db0bc36b66a431649 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fornax-materialize-sails-dactyl (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e47cd906f3eac5ef7031e9e276accc0a01baa2d72f585d855e5404f4ed629f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in deimos-koa-build-figures (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a36c41fcb310eff78aafc5e8df244c1040a53162533a3e6f7026cd926873e7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cluster-wavefunction-subduction-transhumanism (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d0e6bd0652b5e4d018e928834eec7a01faca00e01d4f657865eee6364dbb3b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187277 Malicious code in hapi-prosthetics-thermochronology-galaxy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3945b57156407a7defb56a483e3d506c0a307663ac840d78caefe669db00c55b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hexo-steganography-cli-standard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39fd3e3304d9d3de6b3124bf1144ed9f9888aa9568a564da109abac7d783a34e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in void-fork-zero-log-code (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4ac8089953590249766f726a63f5ead6e566d0bcd669c5993f683b1d91a99ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...