1178 matches found
Malicious code in ursa-commitlint-transform-mongoose (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb28edfc6231cf265a832bc4221e5e5b761e862f2c5a22c556cb296ab24fa246 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in andromeda-procyon-transform-library (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41bc3c18575bd42b0381ace2610a01c34f9535edc43456fad874807cb9d789bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sequelize-transform-jsonp-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3eebc16db6952b19d5daf098a0e91751627b8bea0d3fc10c37376b8ca1d6998 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-112883
Malicious code in helios-css-loader-kastra-transform npm...
EUVD-2025-121165
Malicious code in transform-exec-sedna-sagitta npm...
EUVD-2025-111141
Malicious code in mini-css-extract-plugin-gatsby-transform-ceres npm...
EUVD-2025-123339
Malicious code in procyon-commitizen-transform-celeste npm...
EUVD-2025-122883
Malicious code in rate-limiter-hermes-eridanus-transform npm...
EUVD-2025-120879
Malicious code in ursa-commitlint-transform-mongoose npm...
EUVD-2025-121828
Malicious code in spawn-gemini-mongoose-transform npm...
EUVD-2025-121161
Malicious code in transform-lyra-run-script-cosmiconfig npm...
EUVD-2025-114903
Malicious code in cosmos-eslint-transform-ini npm...
EUVD-2025-116720
Malicious code in andromeda-procyon-transform-library npm...
Malicious code in transform-writable-farout-publish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bf92cfdd8e9ba325f1984bdf4531e1434e357d88a197cb1fa814f03eb07ac4c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145125 Malicious code in mongodb-dotenv-transform-alphard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e8bc2251b0e9e448ee2693fef77c7fa881c2a5f852b1ebfbb70d8704705c11a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146256 Malicious code in pino-xanthus-got-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75781e4fdfbf44aaa54bd56aabe7774674004a1a0f8c21d181238759f9a854f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147176 Malicious code in rehype-meteor-pegasus-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73fa9c9bc7d00cb76bf4363eeb00bf670efaa50798ea6e6eb8f5a516d613d61f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148243 Malicious code in sqlite-transform-luna-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb2e1c0baf148c725b306ad0cdbbc0621ad0c6b25c3f9486da86908af334f598 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144837 Malicious code in meissa-supervisor-markdown-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a60cdc4d5317b650a261573ff13fe8a451e6e91f68730697fa7045ac908f307e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in transform-xo-eridanus-express (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdb820e1534cb90c0d94a2ead0284f4c60efdbb87ab1d40999e2915c495e6557 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...