298 matches found
MAL-2025-151238 Malicious code in abiba-alufuai-ayvaba (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0552ed2bdda8f99bf243d37acd7bab259314a109bd7b6b4bdb0fd392f88f8ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-156254 Malicious code in ilang-6 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ae69094bb1e53fb2135a30ec5fccec7641c0eca21f6095e92e18b9e9b880c28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-160223 Malicious code in matane-cookik-raimu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f58dafafe3267fa12460e78c23e2d24d738c3373310f9e904a4b37f8696ea2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-152940 Malicious code in astia-alabki-maloiafa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c08f9c5dca927a9ff8ef2a1bd2e746189866be30f2cff314e189b52654004117 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in helios-concurrently-cordelia-proxima (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f37d1a61aeaa8f56ede95ca5d882127a27805052f7d01472844a30ff0ed9d2c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in apex-resolvers-wolf-middleware (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bead6dc416b174f4b3e1a8b7173da225f9499133ad4af86d6e834959ebd09d25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fetch-bellatrix-celeste-jwt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9751a8f461ef75356eddf22513134bd4061a94b1facba3c6c921a8f816a09c8f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gemini-callisto-regulus-hercules (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a9c15b620dc27ae7d09f0800168a33bee4e27d7024b3a940b2849bc637dc10d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in deneb-kaus-child-process-nightmare (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d537bf9c2f2216031bce63aa47e74e9a806433e72aca6cf1c49a5905e8f8b60c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ora-hyperion-websockets-chromedriver (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ca76291d113540f0d1d9604ebedb3d9c349de49debb0c7a3d328fa724a726cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in taurus-mdx-promise-browserify (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6c325e367241c5e965dea2194667e8e615c49c2186c63d7e8bff622220960ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in express-module-dione-json (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 746ff1eacfa26ef921d0bf5f4c8534d65842edc5283b1a692ecb6d1364145442 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149595 Malicious code in xanadu-firebase-hydra-avior (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2968e2c1db958009855484fb18365bced939dabc426a4aebb39c634a70f67dac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149334 Malicious code in webdriver-manager-semantic-ui-jekyll-arcturus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45c6b695cd17f247ff7201154e1ce7e5af6aeba6006366cabf272b2b4a150bd5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147336 Malicious code in resolvers-sedna-callback-vuepress (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4bba612a2c27396bdd6c0082f37a7b31d445c50826d26dc620a866316eefb7b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146565 Malicious code in process-radiant-frontend-version (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ae85598099fed261ece31e21b8ded0a3b2032ef48793745a4f6db01c8c0470b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146924 Malicious code in quark-foundation-astro-install (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a52b3b80862080168727e51f66b36697ffc73536a3113103e04eae783caf4cb7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140992 Malicious code in commitlint-meteor-centauri-dione (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fa3663d895433f1033c78c51ac79a941109265b8339154bfc256c6dc6d5abfd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141157 Malicious code in corvus-levels-winston-apex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf00a98772a23d0acdf2e0f571ae86e7537587f184063460e54cbff80f48f446 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in riana-tapai25-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81c80cbf6fbd0ed51e6c1080222eb4660a2a5ef7d202894af55caeee2e8e9132 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...