6 matches found
Malicious code in adonis-cosmos-eslint-plugin-izar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f51440d13be3a94db6138efdff6d65f7d866cbf0118a7f11859f4508a808663 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-160979 Malicious code in munya-mipt-munio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83dd19d0f6d47a25827e42453ed7fe497a3434fc8af0e146d7387a87f62e1118 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pino-pretty-inquirer-ultra-vortex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fdf249268ec831551ac3c3a12ed6bfefab705486213188577886fd1647d1dbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144988 Malicious code in mini-css-extract-plugin-postcss-hapi-protractor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01be8cfa96e4044e64f8c668c0d1417368b0897ee88586a73bd7dd7c873c629d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in urban_whippet-smiletea (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1479e1c09d38b6c199cdddfab829a33db67c4fb4032574a2dd629860ac68b37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-64511 Malicious code in nina-rujaksoto34-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4b6bddf655f575f6db19ff846a4220f83134a0f193525cf2ef238c9293ddf1d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...