1178 matches found
MAL-2025-188730 Malicious code in planckscale-lynx-global-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d3a6f504f1e5767dfec6a0695658c17cb181816e481c901e238aa4397ec5924 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175909
Malicious code in transform-galaxy-writable-slides npm...
EUVD-2025-175824
Malicious code in umbriel-transform-corvus-request npm...
Malicious code in transform-semantic-ui-eleventy-phoebe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ffc4d6e7b72b0aaa2abde280bb586981de8ed65cc2174a163599fb04f6fa777 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in transform-carpo-charon-hapi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9df721a1d001a47a01827b2556b96ff9d55853def17552c84f1c6e05a3172c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175908
Malicious code in transform-pegasus-await-volcanology npm...
EUVD-2025-177145
Malicious code in planckscale-lynx-global-transform npm...
EUVD-2025-175913
Malicious code in transform-carpo-charon-hapi npm...
MAL-2025-189970 Malicious code in transform-version-sequelize-native (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e0b260696b6e01b16b95ea6411e5bdda668fb587ccda3c63e369cde6cd117d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186462 Malicious code in dactyl-transform-nightwatch-petrology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6daac7520c355f3e9987d2acb56170e40385b4c9e7bd696c70bd2584a925b30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-179420
Malicious code in dactyl-transform-nightwatch-petrology npm...
EUVD-2025-179725
Malicious code in cladistics-virgo-transform-query npm...
EUVD-2025-175912
Malicious code in transform-command-cors-parcel npm...
EUVD-2025-176134
Malicious code in superagent-planckscale-prettier-transform npm...
Malicious code in transform-galaxy-writable-slides (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38258b4baa1561b71fdae66ddb0bd2ac471ea1659801128433146ac90ecd09b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175843
Malicious code in ultra-library-remark-transform npm...
EUVD-2025-175906
Malicious code in transform-semantic-ui-eleventy-phoebe npm...
EUVD-2025-175907
Malicious code in transform-robotics-filament-orbit npm...
EUVD-2025-177009
Malicious code in promise-vortex-technocracy-transform npm...
EUVD-2025-180413
Malicious code in antares-superflare-transform-blackhole npm...