21 matches found
MAL-2025-187184 Malicious code in global-polaris-spica-iota (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c782e5acf5440df7201aeaf4eab97c6ad886082ad36c3af25de05758917d3db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-184185 Malicious code in modaiv-kvu-ibuagoufacab (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d3495b80b43e68f38bb7df3cfae7172378ca21fe328e951dab43b3716e0dec7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sonic-os-afisigafafoa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51dc77fe91f8f16da94855493ee1d2d7624dd0bf33f56a0d7df7b6a5d0e76158 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nuilva-daerde-oafalif (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ec633fcba298f059173b5c533b501f9c47039dc4f1ab2c193ef3e4e5f746f98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in apasih-led-pokiari (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5b6f747aadfde8cadde909f630ce4d92d1197b143a27283f5f64c2029b2afa5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-172311 Malicious code in augis-pomoi9r-nsusdsfci (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b25390d59c014f2bb40f84e21e8ad85439f5f60a202670a7438db249a0c52f24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in isabellesanders (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66217f7b5a49aae97a19595234c1d247cf1e7e5f826de00458fb8094f616eb5a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lookingan-namala68 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20b183d054c1aaebb3064affbd475b26ea7fc1bc09fb33959933e31f5127cd31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-151616 Malicious code in abuni-niaia-luhubi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a70ea822cb503a3dad034f66559ef1dca2d75624c0c27b9ee8d1da06cd7a7ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141836 Malicious code in dynamo-run-script-nashira-markdownlint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7361ddf24b24372d3f7d805c9eb58615f9f41cd1281ea692b6ebc64d1b3c543e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in winston-changelog-cygnus-prompts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b60b88130d8ae31195152a9e0bfae2ba8966159706a17f71bd595bec96eee77b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in polaris-mdx-pulsar-transport (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7febd9331b89bf99942d2c9455a80d4e037a082471dd9d9df611c1f8d1306179 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139500 Malicious code in apollo-command-prompts-electron (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7aee3af8c6dc412fc7b594fac4ce1ea971aa6e50ba29153cb14e20aa1e6b645f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144707 Malicious code in markdown-pdf-rimraf-kronos-orbit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66cc6121c1002f967fcfc5df8b09150cb98ec5b80aed5551c892f0da52ea61f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144913 Malicious code in meteor-html-webpack-plugin-mui-selenium (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2ba44be2ccd673c3f19ceb7a542f761f31250400b8f3caa7ffa5327a7e58323 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-135124 Malicious code in large_dolphin_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 327f191f3983ce5737995881e7c322843b01bb5161cd3b31a7065858bd6ab926 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hadi-brongkos17-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 447fdc57ee7efeb70b0be0581bc9c62ed1003f118715423186e9f1ba1a98b332 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in riana-gepuk64-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9452e75cdc3d6df6e58b04047d1f502b1eaa3e650cab94db3f0707210e5ceb6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in managerial-cyan-unicorn (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4c1f7c9ce707dc27562f6ec16ea524d2a0efe9bfddac9c97b6c027a648a9366 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in delicious_falcon_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45534cbe29eb555ef77b037a17de45c70ba8875b28af2fcf67b50b3f3504056b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...