8 matches found
Malicious code in buffer-aldebaran-norma-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31792aa342017830dbe9af17d27809aea53e779e60fc233245daddf3fb3f607d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190180 Malicious code in void-grus-superagent-planckscale (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20a8a9fd08defaff05f5feabf694f5b971ed1904512ea95cf7ae5be645b34d64 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-152166 Malicious code in akanabi-abia-baibu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92f036576152324465b88aa565abc1b2ed3f94c1159d37ce263502aeb5374f91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in upgrade-neptune-arcturus-wolf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 446e51fa447d1487822c19c02f2760b8f64761c7809b2671ffe92a6b1047b144 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144399 Malicious code in link-babel-rehype-bellatrix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e06c6128285df382318c7cbfc0ab35b0ede2d70825130103f6a655c3d8ab296 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-116943 Malicious code in sari-botok3-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2472b1fa111053e3c79f2e7deec188b64566df1ecc6c386e0f54c51740ee0dd6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in okay_goose-tool (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9329092cf18a2437da08eca18e140b576ecaa45ee28f9a02b1f933fcd36eff1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-72784 Malicious code in erwin-jus19-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 505737133d40524511937bb974d9dca8afc6a730ed90316b12fe93b3fdfdb785 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...