Malicious code in just-tomato-swan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b49b879957372f901c553ab6a20037d0354e055a1991bfb2a9d9646e228f340 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-117498

Malicious code in central-black-swan npm...

EUVD-2025-117004

Malicious code in very-bronze-swan npm...

MAL-2025-138604 Malicious code in central-black-swan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a1bd430632870231228667d0ac88248fd249f6f82033daedb7a8f2f97f0ec02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-117280

Malicious code in just-tomato-swan npm...

Malicious code in central-black-swan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a1bd430632870231228667d0ac88248fd249f6f82033daedb7a8f2f97f0ec02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-100701

Malicious code in voluntaryswanz3n npm...

EUVD-2025-99265

Malicious code in enviousswanz3n npm...

EUVD-2025-87779

Malicious code in wildswanz3n npm...

EUVD-2025-92259

Malicious code in electricswanz3n npm...

Malicious code in mechanical_swan-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eab360a403d65c6ff03478509e9f67237046dc8cf579aaf66bc58f342b8c0379 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in voluminous_swan_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9a9f82183e69f34b3b3472332f2cf80fe77ff69fcf7a278ff3074f2976d0b85 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-70959

Malicious code in cruelswanz3n npm...

EUVD-2025-73722

Malicious code in shinyswanz3n npm...

EUVD-2025-62585

Malicious code in preciousswanz3n npm...

EUVD-2025-55733

Malicious code in back-harlequin-swan npm...

EUVD-2025-53632

Malicious code in jolly-tan-swan npm...

Malicious code in giant-plum-swan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1de30b11b7eb9617ef99bc617936a79e279f1035e7c24ca3fcf26ed0c795846 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-53739

Malicious code in inquisitive-coral-swan npm...

EUVD-2025-51535

Malicious code in thirsty-fuchsia-swan npm...