40123 matches found
MAL-2025-186608 Malicious code in dorado-jest-gatsby-fornax (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3af9de4e8e9dafb88bdd63a361c5362004e17237ed4fcee7acb6bc660c15eecb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187552 Malicious code in isostasy-meteor-passport-npm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5750188ffcc6bfec77673e3a538523e10dc0a5ae302b71417fee0574355e6209 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190345 Malicious code in wormhole-passport-norma-gravitationalwave (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83cbcbb4ec803511eef9b4bcd4ae8c312cea6bbd76fce98f3301f4509618457c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187008 Malicious code in fomalhaut-venus-pavo-update (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 329c73a08e9f3032f6b513ae004fb488440b7b7fae9069985ce5d0cf7d9d76f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186351 Malicious code in cosmogenic-genomics-scripts-cache (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ede3ff97afc807cd5b2f66f1660a934b572b18c219fc1b17e91ba7f10e09e5b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189551 Malicious code in soap-auth0-tailwindcss-convict (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ec2c20f4554ecdd1eb1848e47edc8c1868596d8237df69b171abc1da7ceb1c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189279 Malicious code in root-fire-user-hash-static (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d661d39558df81fa68a4a36b87bcf5da9ce98e30924826a802a862aef080e2f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in registry-ursa-prettier-plugin-markdown-framework (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bce70a60b982911ae8463ded8b5a8cfc5578f573075e24291265f231dd7d8f9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in oauth-zenobia-mechatronics-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09a302ded4491038396a7065140b8b3fd0cb60afdd87d680b8a4d45bbf1a26e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in procyon-futurology-concurrently-sqlite (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efbb777c4ecbb465c34933492afb7944e16fe82f30adc44c0d9332b2cd1a299f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in warp-boson-callback-supercluster (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c95312546c36f2f246c3a72e1074b30f6d60280d986fd0cd2fc73fee683e7972 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in forever-zephyr-pavo-slides (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 678b952a8e62f550ff804c39f2071a9f410e3af84b54ca7e82bfcf5eda225b31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in reveal-md-cosmos-apex-bootstrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e367e933db82adf380c201474730be581cbeb3d554deeff671fb4bf308f2788b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in grep-pi-final-interpret-cloud (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5422369c9543fe29291dab0ecd21197d00e62b593a25270abd1b25736f3bec0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in asjustmeteai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 488a12e01a7d9cb98b0bfd0c661b0036427ab1ea7bf5bf5c505c75751d268134 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in astrochemistry-ionosphere-gravitationalwave-joviology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2119ba76eecde671765855d9947d057698ac00abf631f90c033888f31387b6bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in helios-jekyll-polaris-soap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 185b2314d9675d6e627b2ef3b7251acbba2ffb5ecf02743553126f3e6cd7e1b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in epimetheus-uninstall-cressida-sedna (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efbfee41fefce5715d914720f5044a88f951f4b0361bc31c803542153c084c86 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eslint-postcss-loader-pm2-cressida (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ec1c3484202bd2ceceb0d9cc9fd1bd478062a4ed6d75ccfeb1f473655b714b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hawkingradiation-volcanology-npm-delphinus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae30186c272ce2ebecaa6dab45b7ac36c848a48135232810939cf76480942ea4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...