8 matches found
MAL-2025-173604 Malicious code in butanaih-afsfafi-daafigfif (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e309fc6b076251b203ae614a2af7e1055e9d90ab5459fdc7a0d0f0d4920837b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-177368 Malicious code in poglymer-ogihh-gagaga (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab13f481195f3a85cafd32da1f1a8086cfddff35e4722f8af80a64892f49a65a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-158577 Malicious code in lookingan-namakiki64 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2dac1bec864da9f4a4da489c8a5381c63373dd83b61b65bdcd6fd973c13f3de8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148062 Malicious code in socketio-proxima-tethys-query (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4fe679d94e72b7ad801368810f89d965f33683a1c9863d50fe78a00ffee45938 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147586 Malicious code in sagitta-chariklo-neptune-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5567eaf05d0f398650b7487da7dc6b9f7140514798f1542595b71d792c39c99 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in erick-semur36-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7f05249975ece081e49ccf9af543eac195b7f6fa9209ba237c53863e3cae14b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lisa-nasicampur22-kyuki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa3694e4f57600b99d88593b74ba590b4e2be177ca2c83f212a85ad1a5dbac6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in resulting_condor_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fbaf91276a175e49c3a681b72af542f4f8c47409e4698abbb5853eb80281940 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...