7 matches found
Malicious code in mitoko-ontcmi-lapikasi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0729a66f314a00a16abecc568097c27f9a751ac2092e6e4ad66a287e22592d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-159958 Malicious code in manttu-nuyati-munidyfa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2385911d335109fa89cf1ced7e7e11d98581ea2d6a76a69f7be4bd463920496 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142690 Malicious code in framework-optimize-css-assets-webpack-plugin-start-postgres (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34b11707fa868987c2b0a57652ef1ff6d6bfc66581bbb843458f682c7605a42a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146031 Malicious code in pegasus-graphql-playwright-husky (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9485849dcf43ce232720e15f229be2925398be484ea117e2cc67c5e107784b5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-94638 Malicious code in funny_mongoose_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e92820eb6959f02ad6950b61f84c135e284f9482e377baf521f9749096835a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-54143 Malicious code in patria-liwet92-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e8ab9a8cfc278a84265c8517782091e96b3b8843aad5d33daf798574854ee9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in erick-rujak92-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eaebc5eee7ccfd3759aacc8c6f24c88dba6255c751b2453c97aae9fa46febbf8 The package erick-rujak92-sukiwir was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that...