21 matches found
MAL-2025-185716 Malicious code in axios-string-kinetic-xenon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfc2d7a989cc3ab3f0b43d9f5d6a4b66f69e706ee1b91a078f519486d69ce06a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188731 Malicious code in planckscale-ora-envconfig-antares (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb106b457d5f917ba8c7114dbb5f21f91e8bfd4bc12332d92ae52143d6d392e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-175433 Malicious code in kapvino-sovni-fafsfskfsgfi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0c6bc63015eab172687e70ba27fbfee85050cdd7e98cc2a613e96d8f6d48a4c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-151101 Malicious code in abang-poke6 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9037c968eb0773b54ed3bd20281bb59af5dcc7e002ec00525a1a1b54aed9912f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-154878 Malicious code in fadila-poke143 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf7cb03826a3479ebe97cd861a6173119e3679e30e773e2e78070bd7e7871c09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in morgan-eslint-config-dione-lint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15574f1cbe1c74fe0096a4b4a9baf5d35175ed247c3047b558a55689c3bd8dd5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kastra-run-script-firebase-blaze (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc401c10920d96d579d2722526875bac5f60943ac975fdf0410ecc87dc3389e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147754 Malicious code in sedna-barnard-bunyan-commitlint-config-angular (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39f27119a3e95fe00266bbfda55d5c45c50fc7ef145b70d15e67d742e46f33fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-125701 Malicious code in detailed_sloth_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9762a37d745aa53ecd8ea7c6d506a39d6b0279b13e084b14347aef3bed019e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in vina-mangut16-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49d30fbacf592f71439cccab50d6f6a747578a15828bc11c953576ca05054731 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in monthly_peacock-silentdev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86458259b055488f3ced00d3b9ef9d38acdb7dbf903db61e2a394af30fe7d5b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in reese-soluble-pot (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector baad3414a6488be8517f7267549b39a85c0124ade596ada370b889b7cb9c605d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dewanto-esdoger6-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ff5e1315411a88fa53d284ff2c14a820d2397b7e35368934fbe4b73d68b176d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-109999 Malicious code in umi-peyek43-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 356fedd7caad96e80ec54c05574f924fd7c0448acf32630f0cc3aa425477e1a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-95542 Malicious code in motionless_guan_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41db1da873adb27d79cdf2f2e647fae5c6315c533c76e5134a73639a49caa45c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in blushing-aquamarine-trout (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 257ca123147c80961708cd2f39f87658bfc00199fa4dab1f92367bc232f1a101 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in putra-sambalado68-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b1b5d9879c05c690f659ec927e91cbaf41a8cbfe7ea1ee73c9dbea444bce961 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in xerothermic_marsupial_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d156ff57218eb365f97038b1d55fc1086693923d70b9b33c60b99c28df291c73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ogi-otak-otak5-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 932b2df9d8cebd08aacd16702bd862bed2894e16e64818416955fcc215ab47d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in utomo-teh40-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f3dc078758d8c138d662f50b8c2b59784e6fdc93fda96831c640c31968eae58 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...