4617 matches found
Malicious code in izar-cassini-ursa-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 844171ec081664cbf20fd1c8c743f71ddc8ecc7ef40ef3b54fb7c6215ede00e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in juno-sync-middleware-ini (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5262c9aa5283b0187448f086b75b73d09c9b6329b9468931b0f2d7e353f198f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in leda-npm-chai-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cf16bec19825fcb8796255ce3e4faa961efe40d86c0ee3f1bb66bf1526ccb26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nashira-sagitta-tailwindcss-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e01aa82b5cee7d7f29ead05831e499f5b5cc3032624bb089c35c97543f25b33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nebula-mdx-polaris-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b597abbb8f843368a4693e7ff646c15e6d201318b0ac904a36d5fd327456cd0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in neptune-mui-jasmine-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd1df8a6d2bc023876d443ab956c891fa6eed3e890a12c4ae30e21b71e81c3f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in oberon-puppeteer-sync-eclipse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a80b69b8816f3158c875c37490b6600acf86a642161971dc108a3b68d9273ee2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pm2-sync-convict-react-bootstrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1330108cc41fc5f8b16b97bd8b44613ea9687f6d108f9fb4aac46e264b7302b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in process-fornax-local-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f3220f679eb62fd137d7337ff1fea5b4a82a683412b487acdc28e5e9e26e04b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in proxima-vortex-buffer-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52486fb9b8c443812e90f249479354ead4215bfd779e8b4540f4a7ff76bf0e6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in spectron-juno-sync-venus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 029c69347857d8315b739f23392a7f38ae2dfc69862917d707b23b71ff615f58 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in spinner-uglify-js-sequelize-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ec3d26ff88984e14fb77619434a0b3aa7a4dbbd8742914e7a787d85979a1bc9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sync-pulsar-sequelize-framework (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c73aa1ffed6dde5b54eb53a2b63d7a9e76281b20437c3d61902ec25350afeb7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-113677
Malicious code in fetch-betelgeuse-schema-sync npm...
EUVD-2025-123607
Malicious code in pm2-sync-convict-react-bootstrap npm...
Malicious code in rocket-sync-jovian-charon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da6a723023ff0c85d131e2709f401499111bc5defade3c49268b9fbb808d47c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-121493
Malicious code in sync-transport-resolvers-quantum npm...
Malicious code in polaris-sync-procyon-sagitta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1434d4b6bbcde4dcf7e4fa46ea40212da7acbc15f97dd7d0c59b9c7366c8048a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-121516
Malicious code in sync-acamar-got-juno npm...
EUVD-2025-121491
Malicious code in sync-yaml-elara-hercules npm...