9582 matches found
MAL-2025-154278 Malicious code in demdadf-sadudar-addo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7ad12d49efe53621169f2ae0c7b77f16645f48b001d900034d90be6511bc8cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in @mipta1/txifjfx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8ac75e1fcca68da078e27d15892293422fc065e4bb0c335ffc508ebcd55117b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-156227 Malicious code in ilang-27 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc1bd90f39b3cea9a752333f705a8bfbb3cddda6d884712bf53c4594a939f8c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fadila-poke75 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a43a68a349c306b95e3cbc2e3eac16141c30b2897120f0dbb8cfe839b308d7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lintang-tea76 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e35610bb125713f817246fe386ad0871df1d8ab32ec327999e5243620d11e70f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nabuf-otiganaigoaf-dofpohjau (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff06047c326b1cdda4bea1afdc3d9991c1152e9f51b7adf18b063577bdcc5d86 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in teagood-nalikoli57 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98fe7ff5d17c3c949a7565fcfc2ca8ecbedbe7831c17ce155e564227b8527c70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in trevora-cir106 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f2dff06895b4b9f2fff582d1e21f967dfbb085362e046bb9809d3ec1b68e99d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-166644 Malicious code in syahmuda-poke45 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6739612a7efde15215c853bffbb4bc8d34467d05029b7042d16d5c8cd38eb7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142430 Malicious code in favourite-coffee-stork (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b9ca0e2b4bc589d1779f36ab439cb7a963d9e4ffdccc1e2402235e183ddd9f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cosmiconfig-nextjs-tailwindcss-polaris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6cb61a59a4c5387bf62fb5b1b0c1e546a26f65fc5263ca200c39bad00b2c76c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hyperion-hermes-xerxes-yakutsk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb79ac3641111993364fd68a5541c4fc3e81faf66fb042b2aa4791d8a1db7eea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in materialize-europa-install-query (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c34f5b580e515d57b2f97959e41b59126793c501180fdc1ce97b11c5f06699d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in altair-tool-async-passport (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8df7ac2517321d627a4a92a8efadf37ff3d48de62cfe0c4c274c0b5083e53d7f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in chromedriver-fornax-stop-apex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be70b7b1e7d4b70f16763b44d920025a6e3d26eae494c87e150d068726f876af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cygnus-schema-pino-playwright (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0dadfaf6400f24675483af5af45b3679d0f5854fdf0ffca88edf168e4aea9ecc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in antares-less-loader-middleware-sequelize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae569a3671d9274588de48ed5de8d667d2f2d636d898cc6832f261b42ef93686 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in polaris-hexo-process-scorpius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7b50ef2bd3d40f3714e6f6d474a137cab45143d7cab9e3fee3d3b37879008f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in xenos-weywot-yonder-io (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 459589f2935fbcead2d7f29e5333332fd8f5e7a26cb0459b689682edf05048f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in polaris-nashira-jwt-betelgeuse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9bf18553cd953f1d19f22d31127076ebf2b653282b3fed5448e26827af1d5e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...