4533 matches found
MAL-2025-139647 Malicious code in atlas-karma-sync-galaxy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a3aba52d0957eacf7f9cb58860dcaaebcd83e86487cc6f8cf730279da91a6de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dependencies-sync-eridanus-bunyan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08aa69c1f04a21c437aa1c182048b5f6146d8ac5ee652093cdb056f483f5db7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nebula-mdx-polaris-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b597abbb8f843368a4693e7ff646c15e6d201318b0ac904a36d5fd327456cd0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-111575
Malicious code in loop-yonder-betelgeuse-sync npm...
EUVD-2025-116455
Malicious code in atlas-karma-sync-galaxy npm...
Malicious code in xenon-sync-despina-heka (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 369147ecc3fd9f002d219d214dbb663fca66744f31c9b335a4d8d3c6307092d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in izar-cassini-ursa-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 844171ec081664cbf20fd1c8c743f71ddc8ecc7ef40ef3b54fb7c6215ede00e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123402
Malicious code in prettier-stylelint-sync-install-loopback npm...
EUVD-2025-113307
Malicious code in ganymede-io-canopus-sync npm...
Malicious code in juno-sync-middleware-ini (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5262c9aa5283b0187448f086b75b73d09c9b6329b9468931b0f2d7e353f198f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in oberon-puppeteer-sync-eclipse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a80b69b8816f3158c875c37490b6600acf86a642161971dc108a3b68d9273ee2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-121516
Malicious code in sync-acamar-got-juno npm...
Malicious code in sync-deimos-cache-husky (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c70a4f27a43e6b5e2f1728c8fc953fd87116e2317c06437a656d559d75fa0bff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123548
Malicious code in polaris-sync-procyon-sagitta npm...
EUVD-2025-114897
Malicious code in cosmos-nightwatch-sync-redis npm...
EUVD-2025-121502
Malicious code in sync-meissa-meissa-lacerta npm...
EUVD-2025-112527
Malicious code in ini-delphinus-fetch-sync npm...
EUVD-2025-113684
Malicious code in farout-sync-regulus-node-config npm...
EUVD-2025-112072
Malicious code in juno-sync-middleware-ini npm...
EUVD-2025-121712
Malicious code in spinner-uglify-js-sequelize-sync npm...