844 matches found
MAL-2025-189412 Malicious code in sedna-jest-init-delphinus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25e29146ae9ff359dd96b1cd1b095636278686695d62974a2d5867e6a74edcff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187704 Malicious code in kronos-buffer-titan-zephyr (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 792938793257953f6b2ebb196fc67715e7747e88d7f1d9dd52ccf05b0acb5b6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185949 Malicious code in bunyan-redis-capella-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56b9ec0c5fa82205dee259b73ad694a1c72663bb5a0d4d0e23c5bbbfbe461f40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185548 Malicious code in arcturus-phenomic-glaciology-promise (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5041aedc9f556fa5042866507cc67da08df40c63bc2232ad8c83e43644f6f999 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in prettier-stylelint-astrobiology-loopback-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6defb2c5feb096989f260b8521f3669e9671736f838b9e562297550bbb18bb7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in stratosphere-spectron-webdriver-deimos-dynamo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f856118b60305c931ff0be82652330587068fcd0b791ec496187dd214c7cf5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in decrypt-xml-compress-moon-file (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd29dfb05cee6c5ddaf5d6fc7511c903cc2572f128025c139bb45606c8a4d1af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in resolvers-chakra-ui-bootstrap-ursa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d79ea6a0ddcc32a8eefe901fe9fac78119e8f7ef1b653b5f8b55b441099df42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in terser-webpack-plugin-nucleosynthesis-hadron-taurus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9369464ddb44df2eb49a987731c6b712db57570302fd3f325530a2afb053126 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in neptune-ini-apex-ophiuchus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37b63ab4631ab55ea26f71c7b50ce32dc848123780edb2d0f6b35e671c557b81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in prompts-commitlint-canopus-karma (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8b9b4e599ca550db6dbc682b5345b31e201ebcbf9b6ee09e1ad9b9caff0eb31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189715 Malicious code in sublimation-archaeoastronomy-browserify-build (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba32b52b1e4bbb964b6534537b4d98d51c9e74683dea1516424471f869c0e5bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189433 Malicious code in selenium-troposphere-nebula-betelgeuse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b95472989f84ff62f81f6c99b113fbaf6da8a185c95d54c9630b37770ad223cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187722 Malicious code in lacerta-style-loader-mini-css-extract-plugin-less (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 222914e44e98bf610164e7ab4d3b3240a1bf355716c59e8661864f5d3de0ffc6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189597 Malicious code in spawn-nova-antares-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9165a42167bfaa2160397587a1d764f3ba2df9f596d3d7bad89d935d99800188 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in virgo-joviology-proxima-install (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65fb535baf3318b23fa0b62b4cd4c5683c8431b361755d1cb4e8290c76a46c59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in typeorm-protractor-cryovolcano-concurrently (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02a13bbeca9fad4181dd9e0e667817df4fb2bf290994f3f37757c86d5562cb2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in weywot-resolvers-vuepress-rollup (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bdb11770ab86d295bfb45a4a377949b744a249875509122d45dee4c8f543e66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189134 Malicious code in regulus-node-sass-hugo-mensa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7720784fc00aa2f848cde571bf6f8b13377cb1eaefc406673aa08a433b686103 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189736 Malicious code in sun-thread-monitor-void-sun (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 047adcabcc874fbcf09307af5ef5c1dacf009d157f5e7e349936d9bae83a1fc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...