616 matches found
EUVD-2025-123938
Malicious code in passport-leda-spectron-spawn npm...
MAL-2025-140205 Malicious code in bulma-blaze-europa-spawn (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2187e3df5f25fa89e7d582ad2b49cb8dd54a88d1dc8b42e7694934d80e7d5b99 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143284 Malicious code in hercules-ganymede-geckodriver-spawn (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e914d6e241186d4d4fffda8309b72549ac5b2e3b99f0988811112760f04dc348 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145777 Malicious code in octans-pino-spawn-redis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8acae40544dae96658957457b5ded4ab869bd33160c695cfed84d96c16b7950b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145983 Malicious code in passport-leda-spectron-spawn (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f602944b892aa1b431311a550c2bdfafa04a4576371a9039de3d80d1165b73af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146102 Malicious code in perseus-ora-spawn-uglify-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69f9b2d497f009b9eed372879b921b29be260e3950fa8d2f8639d0075b3e34e7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123004
Malicious code in quark-aquarius-eslint-spawn npm...
EUVD-2025-112755
Malicious code in html-webpack-plugin-cache-spawn-jovian npm...
MAL-2025-141774 Malicious code in dotenv-safe-quito-sagitta-spawn (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8bd17f282b80e518fd36af5bd8237ddb4c4be6a734607ebdcbbb5d20ec0adee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-112837
Malicious code in hercules-command-spawn-hapi npm...
MAL-2025-148240 Malicious code in sqlite-spawn-ultra-eclipse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3be06e9b3e8c2658261f00ccc757cc103e2be3f4c5ae7c655f5dd153755439ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146918 Malicious code in quark-aquarius-eslint-spawn (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ef150bf2f6492d4b3a11aa781ebcc8b2feb63ab32cb4e23d322a78ac538fc77e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145759 Malicious code in oberon-xenos-process-spawn (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e025f47c913177a7992cfaf90cc9e7fb5b31a0018e27e73399b2e5c34a67df0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140685 Malicious code in changelog-spawn-spectron-webdriver-query (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbb9232c41cee975e4e3646f041c2c10d24472a10c0535ca5b38420c9aa76bdb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140735 Malicious code in charon-spawn-miranda-auriga (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83962d261eebbf4ab11649fd1ce06459f1df6412b49989eeb3d2328aa7889690 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in octans-pino-spawn-redis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8acae40544dae96658957457b5ded4ab869bd33160c695cfed84d96c16b7950b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in perseus-ora-spawn-uglify-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69f9b2d497f009b9eed372879b921b29be260e3950fa8d2f8639d0075b3e34e7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eris-spawn-lynx-testcafe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14bca2ce67e69c781a2f7322159d6df5b7e238d726cee97432e040ca27711aaa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in antares-sagitta-hermes-spawn (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bd83427e56df88a4c28b00a435090b1a952c4b1b7a52f9c58f18630af7a3621 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bunyan-heka-spawn-json (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3db5614c01d3e27e5f9eea4ed9ba6041855f567bcb63abe84b582e58f8116e2f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...