7 matches found
Malicious code in cosmology-levels-terser-iota (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 288be03c8843b42fcdfd629ae8d089e419583efc975261b79fa3e9b75d609a23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-176508 Malicious code in nokire-tanjiro22 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b411503a7c6035813563f39184685be698c3612f252fbf3c85e4aaff3429e188 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147961 Malicious code in sirius-loop-axios-hydra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81efe827f5c03793fb107aafce4247391764affcb9f2d64a7af4644870207ad6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eka-tongseng38-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47a4392714167df332cfe3518e619f93ea38ee6d1edff787e057c503518afaa4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-114881 Malicious code in irma-moci5-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11c9377c748ca0b62bb44eafd3077484ef112aeb9e2affada816a6b9a4a3575c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-78263 Malicious code in fitri-serimuka88-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bef63be1874880999ab3380266224e88b83f5968840372943bff69acb63af4b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eager-amaranth-pelican (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7770aa399f96d05ea16996490890b30f48a7271b4761d47a54adb2d5edb1012e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...