45 matches found
Malicious code in ethrpc (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b1eff108aebd0c94cd1b2c9dd2321060f61236e0dbf655c62f729169dcd5d5b3 The malicious code is in the ethrpc-keys package, which is a clone of legitimate eth-keys, but contains a modification that silently exfiltrates the user's...
MAL-2025-181204 Malicious code in @akunsansan0/biru19 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0ccd8e21e64f04ef0fb7a4cb56757c60065fc6b20f77e1df834184b08ab4c77 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-177617 Malicious code in polymer-afahof-rafgabavzfgbo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a81d342b500f4a615e94afa10863a91f4729d6fed8273ccc224e8e9b6819696 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-151112 Malicious code in abeh-poke16 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85a4afef2a1e396c5099e6296a1cda1354063ba7602ef08280d2ca823cdddd4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-165140 Malicious code in riyanto-poke33 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46a78fd6866c6f7d459bf1f9bd97f9e08efd6f02410e63b517f95a8a9a429a39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in technical-alnbio-toliaanu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a8967c9d03f3781890e9f8ba5b6752c00af44df9c0d33a363c69f41118595be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fitra-poke30 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25addd62faa859d289842a62b456cd13cca198fd3a481e101cf948d23aa9332f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-159726 Malicious code in mansa-nonatai-amutgiag (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b5aabf040c87d26a0a5852e6793deef938fa02422340313d51541d87ec14059 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cinta-97 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc322839eddf83cc6238ca5f5c4434326a1f07a041b8259a23085b354fad9978 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-155355 Malicious code in grion-tyustu-nutr (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5986621d7df00e61fe46460503469d136c49b0a05814357094d475f5798da395 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in europa-kaus-ini-procyon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97b8eddeae826b1fb99b6c944ce28b1eeec45196af20edf767f02e9c7e31ad56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in xaver-tomat12-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b418c1a04d3533eac36441f981a1b302074187512da93e965580f0f305bfd0e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in expected_donkey_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9574348570b38f413a740e5adb9523630a757aa004c22521f56a91354abc520b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in joni-tumis47-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdc55e84a7f86b2c43fc12d48403e3de5ffe15fe160cef1d6fd3d4fc2288938b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bayu-kripik80-wekto (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ccf6126c432b975e65627a3140223b4e2b82735efa70e1177ddcd4d8eb2c2d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in galih-tahu87-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af48e7e9ecb6e7da4441d44940ed64be3fd1f76206c6bbd29ba3aa8216043e9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ade-rojak17-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cce766bad410d75c391147c4b6d2ca033ecdb1e4a94ccb0bc7530ff0f690c6ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-122660 Malicious code in putri-kemplang10-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8ac2542664d074713ba30edd26d9c585afacb0241ef76c575e44e13d9a889e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lisa-tomat25-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ca68f589bb7efb0ed53059fcd73521173d0be78d1c1f1d5d0b4224205c866f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eka-sego38-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d56440c3136b95ff796bdffaf15beb99994684ed331df861b25db2194275c725 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...