3 matches found
MAL-2025-139816 Malicious code in await-xanadu-jupiter-vega (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd2f1c79ed3156189c294271f1e96c1d453e72ef5d6750d32043e80fb3f9a866 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142631 Malicious code in fornax-loglevel-xanadu-jupiter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f4564c10a88dbb40742a117cd51e90da16d563a33c2464c01b686df5490cb33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123209
Malicious code in proxima-eslint-plugin-xanadu-jupiter npm...