844 matches found
MAL-2025-189412 Malicious code in sedna-jest-init-delphinus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25e29146ae9ff359dd96b1cd1b095636278686695d62974a2d5867e6a74edcff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187704 Malicious code in kronos-buffer-titan-zephyr (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 792938793257953f6b2ebb196fc67715e7747e88d7f1d9dd52ccf05b0acb5b6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185949 Malicious code in bunyan-redis-capella-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56b9ec0c5fa82205dee259b73ad694a1c72663bb5a0d4d0e23c5bbbfbe461f40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185548 Malicious code in arcturus-phenomic-glaciology-promise (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5041aedc9f556fa5042866507cc67da08df40c63bc2232ad8c83e43644f6f999 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in prettier-stylelint-astrobiology-loopback-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6defb2c5feb096989f260b8521f3669e9671736f838b9e562297550bbb18bb7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in stratosphere-spectron-webdriver-deimos-dynamo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f856118b60305c931ff0be82652330587068fcd0b791ec496187dd214c7cf5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in decrypt-xml-compress-moon-file (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd29dfb05cee6c5ddaf5d6fc7511c903cc2572f128025c139bb45606c8a4d1af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in terser-webpack-plugin-nucleosynthesis-hadron-taurus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9369464ddb44df2eb49a987731c6b712db57570302fd3f325530a2afb053126 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in neptune-ini-apex-ophiuchus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37b63ab4631ab55ea26f71c7b50ce32dc848123780edb2d0f6b35e671c557b81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in prompts-commitlint-canopus-karma (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8b9b4e599ca550db6dbc682b5345b31e201ebcbf9b6ee09e1ad9b9caff0eb31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189433 Malicious code in selenium-troposphere-nebula-betelgeuse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b95472989f84ff62f81f6c99b113fbaf6da8a185c95d54c9630b37770ad223cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187722 Malicious code in lacerta-style-loader-mini-css-extract-plugin-less (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 222914e44e98bf610164e7ab4d3b3240a1bf355716c59e8661864f5d3de0ffc6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189597 Malicious code in spawn-nova-antares-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9165a42167bfaa2160397587a1d764f3ba2df9f596d3d7bad89d935d99800188 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in virgo-joviology-proxima-install (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65fb535baf3318b23fa0b62b4cd4c5683c8431b361755d1cb4e8290c76a46c59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in typeorm-protractor-cryovolcano-concurrently (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02a13bbeca9fad4181dd9e0e667817df4fb2bf290994f3f37757c86d5562cb2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in weywot-resolvers-vuepress-rollup (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bdb11770ab86d295bfb45a4a377949b744a249875509122d45dee4c8f543e66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190227 Malicious code in warp-sails-selenology-gravity (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08f0910172b210dd6224affb0c347ae9b8f4c3a38904d99e2133ff82b3f9f175 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187461 Malicious code in indus-triton-polaris-nextjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce16fae40cad6ac6618e19cfa3d4f555f05adf35508e0718734b0f1a138f2efe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189690 Malicious code in string-avior-heliophysics-tachyon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f7ef6f68451c5fa51ac41295643a67cb2a6c0437ba9c76305c143de6da7c1d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189736 Malicious code in sun-thread-monitor-void-sun (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 047adcabcc874fbcf09307af5ef5c1dacf009d157f5e7e349936d9bae83a1fc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...