18 matches found
MAL-2025-183203 Malicious code in kisut-dfg-diwfzcfeccb (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8591e6538e21825b6299cbcca735980a75bb363395a51984ebb3ad7e82196dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-183725 Malicious code in manu-oifads-gsisofait01 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8360faab652e6b1eb0a0d9c1e216e90c743b46486f07d179154f38ae5bb46a72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in soniec-kat-ff (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cd919172ff697f96b104ebacd4b023e561ff9ffdf628dff5178e47021b16e02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in riya-26 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5142d23b0a351a4b132bb484688a27b975c128b87e409a726e88e4ba6e676f93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in thudsdmbi-uyt-unu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c104a4d30bf48352015f2092380a43cec35b59c44a3eb3b65bd53636e975940e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149054 Malicious code in ursa-dotenv-safe-nconf-pm2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd6467b9bf9305267e3f19b3326675b76c09277824481b4e1fca8df8bed48f11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146868 Malicious code in puppeteer-writable-blaze-phenomic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 703192cac3036ff13d5bdc44a4e5625b481f7c3268d6bfd58fb3ed2c6bbaeb39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lint-staged-library-fork-perseus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 599e178fbd7b06563cee8ffa42611bd250dbf206a67592c620ac211ef0d23d4b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in umi-ronde97-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dd52e92a4a48a76e9a9c99062ad99e00ebba6856472a4396fb12c237727ac83 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-114537 Malicious code in hanafi-lepet22-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6dad346025ae7f9cfd34e2acb19d3c846a885a175b396972d48a7a4a48515a78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cold_skink-smiletea (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bb78d3ae3d591ca31c5fea3f2a91e83d9208102a0f26dcaf1b5743837cbb347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-83779 Malicious code in bumpy_ape_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 095fc14df8f4cfcff503f9bcb15b65395fdef5396a9ef356c4cb003ee6d01763 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in temporary_sawfish_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6dcfa15b5209679fe95bd8a1b703d64910cfbe11eff3776b46022eb5f3eae8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in boring-indigo-worm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e3e1862f32f2c7cf3c5431a4ef7e7495e88dcf8ec288584c903ced7e8661ebe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in okta-klentik16-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8e5f973adec1f593ccdd2cbd2d037f2ac1d4525630d35da0205faae9f2a174b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-59973 Malicious code in appropriate_eel_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d40c9d80b426923211a0e09ac2410842ac2dd836dab7b58eb21b3c5ef23322ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-57013 Malicious code in joko-gulai62-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 349097f398ad271665d7cd90aacb41a2a59c0cbdc18434f30080337f5c4ca158 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-53336 Malicious code in maman-rujaksoto35-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e8cdd075a0d0d94743ae3b4f56629349718a7e43ce80ab06253722715aab631 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...