36 matches found
Malicious code in loop-webdriverio-vulcan-proxima (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3f9d3f3f64e3dcfb01546c14df5e1d0e289308f7238bf5fb36f487b9e92423e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186143 Malicious code in child-process-concurrently-chakra-ui-node-sass (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66acf8a52ab5f47e31e87daa88e9ccc679f3580c46543cd05ee50741b3f97448 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187930 Malicious code in markdown-pdf-auth-neptune-optimize-css-assets-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector edeeb03d25b128fd84b87b2e7eb8c732469db592c485a2eadbb54f27cb71452b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sonic-oihg-mov (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f47928018fa75183df95ce01bbc975bd76116f6c00eae15241847b03ea6d87c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-183443 Malicious code in lobac-ubb-gafufb (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0c27e8dfdd75fda48b9cef91946d865c73f5c24de991abd12ab8ea9050d5af4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-175325 Malicious code in kapvino-sofgdi-ggfua (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e40222bfd8d8413b0ac826a20df914c84bddd347df8c0f94ad8f9bf5112c912 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-171186 Malicious code in faisalahmed (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3af221350d4def43d5fe4124e133be5db064a715efea4c282d45c0dd545e1e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in teagood-nalikoli83 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3bdbe6f8d0f50c085918ff6cf6a30ed8fd5d2b1493e92c6e4f35763281a8455 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in modirai-imuno-jinmanu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 833fef063f434ff2956fd1ae60bcb21a88ec8a1800b20e04868bd70d0f3c5495 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ramadan-poke15 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 331204db8a545b5e3617d0addfb3bfdc58e7ba0e9a376c80d22ee9caa937ecf4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-168545 Malicious code in tealove-nokire18 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e380f6c5dfacd852330001b5ed3520d778b2d03d0751ca8bd3a8b88efe2a9578 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-170452 Malicious code in verify-tacti-busuna (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c46fcb6733dcec7c09cd4aed525005a7b996fe7a405c02c2c2b51e51ec3357e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-166897 Malicious code in teagood-lokika33 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdfa066a97447bd0d1b35dccd93b167083b2626222a3020d53a2c5a6bad7a872 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-151004 Malicious code in @miptaa02/wasdt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc36d05097165f1caf0c7f28bc9e3ddc31f6247830bbf2ba035f2a901fc7aa34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in repository-commitlint-config-angular-fetch-xenos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f02b4b6a63c278ba031ef0f782682f26c1ad3881ed1ae82f7aed8dd2ad04e399 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bootstrap-comet-convict-inquirer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1090d16dc37057a5852adbfd5f493146d23a9dde058a92e0f5e68cf23ffbe844 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dotenv-safe-norma-hydra-pulsar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 101d7f2d3887b13730933645915b85902ce437343b70cafd0c90a2da7a4e3312 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eclipse-dotenv-sagitta-dynamo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b7d0062ecba0912e47bbf94075c797d1732298e682066a48aaee95cdc99b2c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146556 Malicious code in process-local-jest-rollup-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ab26fc3b03ef31a02fd7707e51d12da7af5f9bb6a697f7e24df86a5a5c306cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in promise-delphinus-dotenv-parse-variables-ursa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cca332e25d9d61085e10b8a93b01916326bfcc7343eb2d74d224e9fe7cfc7db7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...