182 matches found
Kiro IDE 安全漏洞
Kiro IDE is an integrated development environment developed by Kiro as open source. Versions of Kiro IDE prior to 0.8.140 contained security vulnerabilities. These vulnerabilities stemmed from uncleaned inputs during the webview generation in the Kiro Agent, which could allow remote, unverified...
MAL-2025-186870 Malicious code in europa-lynx-janus-repository (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6ce887dbc94c1be94b6425244b58969751b2008b1b2db5b16d73c4f5eba3420 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in scorpius-chalk-eleventy-kaus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0a057c21c71f4226b5c3f22f8b0019b297ad4819093ac6ee0bb78d98783e730 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in catch-bash-mu-daemon-slow (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31096c13f4aea6a88a542856fb5bca32be9585f83bbf33f7d5e4134637ecdbca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190046 Malicious code in umbriel-kastra-gacrux-google (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ffda8e7d30b433120052954bc506ed481cdcf30599bf0120496c17a88789f72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187375 Malicious code in html-webpack-plugin-multiverse-proteomics-blackhole (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f04dd975db833fdc723e01450c24356d92668375df821a448e8323c02bf11fd6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in paleomagnetism-process-rigel-ariel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 806c222b404c6835419bb2dc3e3292a0bfea544dc0e55b7579ef348d91329803 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sirius-blaze-decoherence-scripts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 427f85ee442cab5b3fd834d9f775473723d0b56356c21312d5a60d97a43278c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186542 Malicious code in dendrochronology-test-markdownlint-grunt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 367aecf6bc954214e27f286e5d8f5261d0c857e8add3e2abe083efdcd37cacd2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185919 Malicious code in buffer-aldebaran-norma-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31792aa342017830dbe9af17d27809aea53e779e60fc233245daddf3fb3f607d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in modiov-khan-avcafivad (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84a39e282852ce7e1528ecbc17b9f2430bd68b98f173e1141742bc92b3117b89 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in odasv-knu-boniv (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2cc2e6537efcb372df433c82b15487e0f848ba008378fdf03383a21fd0af32bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-184032 Malicious code in mitoko-ontcami-lamoki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54d42fb90c7114d9cedcbda8b3ac2f5eaf8645678eebd14f45239c85889072d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in baso52 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc7e1a0ab7db9f9c6a4425933b1af70de64fb636d3d39e1670afec0379bea73b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-181270 Malicious code in @akunsansan0/jorelat3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2116bcc295cdb36b79c0dc1152a23c10dfe80389ba0b840ef99b00f067aa0a27 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in teate-thy-sonic-wuhufo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5484294b13f01708319d6b6b9c7b8c2f4949f8a36fcf24e7980de5302067c33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-179495 Malicious code in anabuyil-na0n-lukiahuas (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb1ec83ae197e34c50521a7588a41b53596715fa5996702909fa753597ad416f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in teate-thy-sonic-pugut (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 562138a75a94c367920367acafbba0bcb2f74f153065274789cf43c5625f5675 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-179446 Malicious code in aibola-miloipe-apomapmai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d44be8c3326643969b63d7f19059e57633843919a054eedddf5d8efc2a3ef1cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-179462 Malicious code in anabuy-innu-nini (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98c938ae0c5964f2037d31f0a873ed3fe3993da2e09f2ab105158696b0df715f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...