373 matches found
MAL-2025-167398 Malicious code in teagood-nalikami124 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d858dc1f825aed9cee9207ae7c3f94433cc95eccc8b09b70547868ffcaca5f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-165794 Malicious code in sau-nakio-upsidaaiek (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0c52128295a37fc5e207b93b0ce4e2007d36069aa9a93896b728b5daa1434ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-163979 Malicious code in parwo-poke119 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e77e2263b52af4ad1bf8924e1894d7d215859358b4d44bff778084ff0cf6b4a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in teagood-lokika27 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8908d912937b35a7b5a7add43fc9756f4878d1c65747576f8190d795c4d2d5c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-157556 Malicious code in kentung-72 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4163aed1d076846452617420160a0232586dba57c0bcf855fca81c1b9a24bb1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-162846 Malicious code in nokire-lokcek88 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74f06454e5651feacef0d7d3ee29997094edfc6673fd13442f066656553829e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in air-poke44 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acb2fa9164bfd4dcfb261c5cc3956a5baa98949ecd5670af13d05d9529a0e6a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lookingan-nalako32 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e96869e83e9438fd35d178d8eb5f0f51467d3ae4fcce7432a35035b4daf27021 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-163563 Malicious code in nokire-zabuza70 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27d613a5a8a5bea8bf6b43d6240d6242273c19fd66b15246d4401a45ffbb23cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149078 Malicious code in ursa-venus-terser-luna (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e21328f1d7d1ad0ab1a8c517d9028d0de2ec3dc3364feead5e8eace5a4d4288 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139957 Malicious code in bellatrix-spawn-iota-convict (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e02a2735f04330ceaa2f373020d5d6d3640831bf53b240730c047be4df17a12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149299 Malicious code in wasat-restart-loglevel-carpo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 574c669fccaa341ec62ffab852152064911a73868724f75a4af37737a8830674 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140074 Malicious code in bootes-deimos-tethys-io (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bf8276b237457929553c4b5e28b51cc0edc14043dff26620640248f1d6fd96f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139363 Malicious code in altair-rollup-bootstrap-webdriver-manager (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf705e24bcc766ffd8b06f92a877be746751610972bad74059d45440502aab2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in webdriver-manager-io-betelgeuse-cordelia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53b7ad259d79486b5eec821e49788722b5bff497f8471dc329e58af138fda0d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in middleware-postcss-loader-vulcan-configstore (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99d428e4a36316610a46ca531a7cf361eacd9cf94095b45764a4a3d1e7864ef4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in leda-jabbah-google-rigel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ca5d69cde5ef8f2e71faae2ebf02639ed7e17058b5e0d56f3a0b45189637526 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144646 Malicious code in magellan-markdownlint-concurrently-wasat (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 260d3be4e484f62d2fc2a90189330282e1a805f14b6990559ace653282d90529 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147258 Malicious code in remark-wolf-jwt-electron (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd162f05a085a9bd6f3d5eae4eb71f22530b58420b2769e141f54389dd035c79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143828 Malicious code in janus-private-phoebe-dotenv-parse-variables (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36e39b17f67223220fe63d32875adfba39ede6a56f0af2b1cac86d9c7bdb1d21 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...