6 matches found
Malicious code in modiov-kihan-avcafivivuaviagfavacd (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2901cc6ce48aae45614c3ba331e203f115e27127530f8c1a5e5761a1df88da8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hercules-betelgeuse-build-release-it (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af8705cb1053e89ed2a14becdd01e0d3d70ae1c4a565c3176eac6a1bcd5fd245 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-125571 Malicious code in compact_ladybug_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c25880c6093af44cc5039177112c3ef40734ccb18094d016d21f8c359311ff6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-93010 Malicious code in zul-miemee32-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 293949494f1b382b547115a4782a55a4a45a4fd2eabd2ffee8596ed4ca9134a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-66535 Malicious code in zul-sego75-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71e9b6e4489f0de8c315aa27fd4cea357846fbfaf5780decf4628493e0145968 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-51610 Malicious code in dono-nasi20-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ecae51f53bb8742879203af6dac05c8fd87f31b8085b9fc941916124014a5ac The package dono-nasi20-sluey was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that flooded...