844 matches found
Malicious code in koa-prettier-stylelint-link-google (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3769d4b81521e90ec08b25681b58a9566408041fe26a44b7c1d5efaf56ff4c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190227 Malicious code in warp-sails-selenology-gravity (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08f0910172b210dd6224affb0c347ae9b8f4c3a38904d99e2133ff82b3f9f175 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187722 Malicious code in lacerta-style-loader-mini-css-extract-plugin-less (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 222914e44e98bf610164e7ab4d3b3240a1bf355716c59e8661864f5d3de0ffc6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in prettier-stylelint-astrobiology-loopback-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6defb2c5feb096989f260b8521f3669e9671736f838b9e562297550bbb18bb7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in stratosphere-spectron-webdriver-deimos-dynamo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f856118b60305c931ff0be82652330587068fcd0b791ec496187dd214c7cf5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in decrypt-xml-compress-moon-file (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd29dfb05cee6c5ddaf5d6fc7511c903cc2572f128025c139bb45606c8a4d1af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in resolvers-chakra-ui-bootstrap-ursa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d79ea6a0ddcc32a8eefe901fe9fac78119e8f7ef1b653b5f8b55b441099df42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in terser-webpack-plugin-nucleosynthesis-hadron-taurus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9369464ddb44df2eb49a987731c6b712db57570302fd3f325530a2afb053126 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in neptune-ini-apex-ophiuchus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37b63ab4631ab55ea26f71c7b50ce32dc848123780edb2d0f6b35e671c557b81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in prompts-commitlint-canopus-karma (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8b9b4e599ca550db6dbc682b5345b31e201ebcbf9b6ee09e1ad9b9caff0eb31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in virgo-joviology-proxima-install (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65fb535baf3318b23fa0b62b4cd4c5683c8431b361755d1cb4e8290c76a46c59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in typeorm-protractor-cryovolcano-concurrently (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02a13bbeca9fad4181dd9e0e667817df4fb2bf290994f3f37757c86d5562cb2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in weywot-resolvers-vuepress-rollup (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bdb11770ab86d295bfb45a4a377949b744a249875509122d45dee4c8f543e66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186756 Malicious code in entanglement-australis-event-leda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fe1daef2ddabff000c930f4c64f389381e92e08eed834fbbb30fe6bb729393f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in meissa-steganography-helmet-yaml (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 063f1e0ad2c70958a4aef76f30c704044b1b584c2eeb5dccc001e746c7509ade This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in speleology-ganymede-halley-panspermia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09a4e204a906cdfd8a5558d263c05149b2236580f35ac76afc37f33536655421 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nu-double-import-theta-old (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cac277cdb2603c0d0004386887eb6afc11277f7f1255244070b236987bb24bdf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lint-staged-gemini-aquarius-superagent (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5fc40fa5df9bcceec113021575335b079fa5851a7bb404c582e9c8ace2a5b31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in supernova-dysonswarm-arcturus-solis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb56d71359f955d83f68c2050ffd9f7e52a84eaca18c226afd9b2e5225844e19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186410 Malicious code in csrf-farout-backend-fomalhaut (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2dbba3ecd123044b33d935f03d97d2a75be7a13c2dcaf66b322bb5df75f88737 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...