7 matches found
MAL-2025-156146 Malicious code in ilal-poke43 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 883f7614956eab9ee5c20d2971725287f969a853ef7bc0102b60ddca54e7a455 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in markdown-pdf-mocha-lynx-nightwatch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38f527d979b805966a29c97a0f6ba24c8df77bbdf6e19633f45420bca5790374 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-104789 Malicious code in kiki-kue47-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9aeb8f6ffd2de026a0a28aa473b971e277e382004db258db2e3eb97bba92dddd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in xaver-lepet44-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57ae16781d9a7da21ed6eb1c5f6debb9a5121c0841969c1512a7e316ecfeefab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-73976 Malicious code in kurnia-saguer85-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aaaffa685d0910318dfde69a02ee72ad6c4415036d3de3ce8832cfbdb1bc0d3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-75170 Malicious code in riana-sambalado45-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ead8f50535910e583f15becd0592e45b2559cd344274e3c146ab9e343cd39a35 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-70820 Malicious code in stale-tomato-snail (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90af5a4395a55228f60b49a519f5cc020a7bb94cc3e7f0e16c90c99f0ceed93d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...