8 matches found
MAL-2025-184955 Malicious code in sonic-kas-fagiufgafa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b660127f1feaa712d039bc5ece4fdf2a36dfe60a609076b2f3d6ec0b1920b3f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in @miptaa02/sxdhdj (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f9cefd7a01ce9b7f65a6676c6ad1bad35aea6977cee670a2e72979f46e1c998 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-156261 Malicious code in ilop-12 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a76b2f2c88cbd56512baf5c2e4c5b0cf6a102fc494ba293c784b8c53c3024b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in perseus-kinetic-mongodb-dependencies (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bbffb1173d5dcc002853b4ba9935cc827963528dfd53c8d8d7e443f7d17d8bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-133439 Malicious code in fauzi-gorengan23-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60b28d53ebf4c380274a7a2dad12d1cabcd4777f8f972f08827b454657d77806 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rifqi-soto15-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f8648a29d1f337ae3304c6f52485d86d0addda2103fa21bc75a8e29d0fe9f89 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bella-kue9-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c67f1f7f34251ada4e1f3c23b88d928e57db2bd4206f5aefc69cda949bd9e50c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in zonal-emerald-swordfish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6136b56b6bc410caabda520738aab9ab4b1e744d4a5cf0f31352f830dbeb3eeb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...