30 matches found
MAL-2025-185365 Malicious code in abstract-decrypt-async-public-phi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51b85be1c1821e69911d086ceb1086440095d3c75414a4be0d017c6474f0df12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186490 Malicious code in data-grep-string-transpile-link (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0baec754b0baf24fb249ba7fbb7cc8b4653d63b04595b2df0119337a6b7e57b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gociay-uga-aggrf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d934b529a34fab097759ca2edca5718a4a269e985d3338c92d84fe51d01b8ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-138244
Malicious code in avangs-olimois-nolianu npm...
Malicious code in kisut-fig-dikanam (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3863abe732704c426398da187149beafbbdb17acd43ac8faebac3d532d0e4409 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lookingan-jaja66 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95610ee7fda42efcc41d3272e28fa852c46243613932e428d7bb555ee8bb231d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-175623 Malicious code in ksai-kil-kokaiali (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 515244ae2725a89485ea8e47908e14b7e47985c436a4713b26f81c43037e565e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in aciag-fridaatqft-fafugofada (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 824d47bb93bb1b799cd3554b1b78543ab0dd66a2a35a69929e25bf4437cfe44c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in avminah-fagias-fimokafiguaogi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d25fbb53367aea05f945c8362690a8f76afb532084037cd047c21b1da13d0de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nabuf-otoiman-igioamaiaao (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b51be021a64051ef19db7c5a6a96eae98a64f39db9e323e7db128c9a578ae756 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-159125 Malicious code in mahnud-unmg-goi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2680ad4f0c1e9ee6eb10e2c958ab80eb710b07b06759a43c163f43b17118da49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in muklis-47 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d53ffaf9a7eef73f47ceca1454e1772b7ef84b9ffdd39aefa0dea551a669c5b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postgres-resolvers-luna-acamar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11803c5a004b65527f2ef96e5f36fb752b13276d33c9bff1b5bc22b6479620db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139371 Malicious code in altair-umbriel-child-process-cross-env (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56c96004ef35148074e4c1f1adf0efbb7176c7ef4fb1b958d124c0ae97eb3479 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-130197 Malicious code in siska-donat100-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 982a3ce901a3b7eb0ba5626753c7ab575135cdceb01b597990552d590ee500a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-116925 Malicious code in rudi-semur2-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a462b1a40576e30f5cd5dd757699fc1a4b8de1ac47faf8ce9cb42d7e0b04c83 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-108603 Malicious code in shallow_scallop-biggestdev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f1690c74103c8e8ecc73348ee3523365d1ed3cc930d2dcd4d217351ea23e905 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-103297 Malicious code in golden_ptarmigan-notthedevs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8db4c242dce43a0a4961e04f3ca5588e654da81b886528eba38d8718ffb89b1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in premier_lynx_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a8fef18aed2f9ff98d0ac32b4f62f39c438000eef09a64ec2af52581ad6256d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in loyal_frog_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77a0fbf2d301dc1a2fa06f17d470d9c258065c47338ad894011594e85ec52d66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...