189 matches found
Malicious code in uaragia-mudashai-syuf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d993bec8674f897197b8d776b05d780e6ce5e74b16024fac6b06f55328d17d53 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-157072 Malicious code in jimmy-poke17 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfb8b2234fffb702ad599bf0588499a213818d3ef43f029842206195b0e0b2d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-160074 Malicious code in manurung-poke52 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector daeaca892a34e89c3311fa25dab91079a773d0e0407f52e4787b61ff1654ddcf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-159038 Malicious code in mahnud-magu-naibkaufam (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fd3ee51cfe95815eb79bf7e5644c557a42cf588096a7533f35643dec588f306 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-160541 Malicious code in miracle-dokloi-ikai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14158368dd280291695955484ba758eb03010e9659f501beefb0ae1203467929 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in server-apollo-markdown-install (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43877fef46565713ec332e3eaea0f240ce8a94564f81b080ce2c75687fdced15 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postcss-eslint-semantic-ui-metalsmith (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c0f9a98498be315aa619608d786350a8e498f80693205f92a211b1ce4ca3f09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in juno-levels-bunyan-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be54ebc21569f3ca445b4b90feb01ac0ec8a1d4b192bb4044c8284d34e13de63 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in europa-vuepress-sass-loader-graphql (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dc630cc3b9853a3e4a5ab5e6fa977d883baedf6edd8f9d7ea2803d49476a0cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sync-pulsar-child-process-gridsome (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eaf5acc9aeb09f39172e1ddf5a42d3c2acc0f8f2bb42d69a683d266971cf6452 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in html-webpack-plugin-postcss-aether-magellan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 308618ba8dcb36578482b63edb7c72de0fe2074c46c37291ecd1d3cd25da9281 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hercules-nextjs-zephyr-install (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8344c28a41b99d856235ce4061e3fe1cef579c6bc379248ce3e9a5a886efe76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142220 Malicious code in eslint-gemini-unuk-nightwatch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eeaf8e815ecc4104bcf4c757eb068fddf1c5f5ff349a062c53fdab37fb623c7e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eris-spawn-lynx-testcafe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14bca2ce67e69c781a2f7322159d6df5b7e238d726cee97432e040ca27711aaa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146273 Malicious code in playwright-bellatrix-postcss-loader-query (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f467e2fc268d1b704ef9d37ba01500dbe9f530113c6d49aa5e08f79a0efd31fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140085 Malicious code in bootes-nestjs-heka-gridsome (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d4b4f01f46a46db96df07924ef3f869689ca6569af12e3d03bf1c55fd5e9340 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145357 Malicious code in neptune-elektra-transport-carina (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5619d2615186fb3d2337f8ba716e0bf713e08317404287f6c4d9e7596f1c4b70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in commitlint-inquirer-run-script-dotenv-parse-variables (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 488f28521232da95e63a6edd9fb762f1d2effcbc53e3dd58de1c4f35e3bf3ce6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145004 Malicious code in mira-cache-cross-env-babel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 300f84b23994bc74cbce26b47d6fa618ed69bc1cd0ffc0ca0702cdd19eb02cec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147244 Malicious code in remark-dotenv-safe-betelgeuse-testcafe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f67536623e6020a2084816b1ce2ffd1af360a6738503293222726a849783479 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...