67 matches found
MAL-2025-191442 Malicious code in uniswap-smart-order-router (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4dbda3147fde915a97ddd97f51f5ebc1757fa14bca7cad95f333862ad125c3c1 The package uniswap-smart-order-router was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190675 Malicious code in @posthog/rrweb-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de65400909e7dab680997106feffcc22e5a954f60fe775e82db28e5529bacb0c The package @posthog/rrweb-utils was found to contain malicious code. Source: ghsa-malware...
Malicious code in bunyan-spectron-webdriver-less-magellan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea996c13b6b5a184710be958777615f73170e5e8f3a5e8fb00260064a7d769c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in avangs-olium-nt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9cb983febd18968a8597732bf01c611ca293ca69c6a38ec0b596c88fa6ef2550 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-184805 Malicious code in poliaoz-aiksdfo-alfdaad (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e0dbb80930a33d34b79f8865f21ee5d22302a9dfc9a9a8d429d543f856a43c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sahu-satg-iufaaugai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ece8372b0381b6bd7fef0f9ef492e97641056884ad92639a12b74933a6837a5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hitachi-poke88 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57a45b58d3a5594cb743ec070e9eabfa950860e930c6f1cca3b54b59e3c9ceab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nuilva-bavia-mund (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e59f0cda2e163ffdf400e42103cb3c9cc5ea5340377e593c8f7e45e514c6e2a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-172491 Malicious code in namei-mla-abunubuiau (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c715bf67d8c4af083c124f69f0b9ece2c1bcd7a8967a4a7b15d5086526ce5dab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in uinsnu-lotaihzmi-kulaibnisimu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2639cc40df3a434bf1d49a3ab057de0ca3dfbe9f21566aa7f887b1eba963940 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in intan-55 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eba7a2536c9f48559b7de8e94c75eb537f3d6bcc6d5514533071f99fdd23adc9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-167729 Malicious code in teagood-namakai71 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d054dc6a1bc4540f5641dbc88c59c17d3181bf1c2c989204f6211163db77e2a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-166525 Malicious code in syahlan-poke27 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ff6380cde13a406696fe8594661170192697769ce6129f4d3178265c24984b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-150154 Malicious code in @mipta1/misws (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b90cd9218c77ec51eedd4016f37306fab088ee1a45c2f50d00f0014e4949c5eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-167168 Malicious code in teagood-manaki98 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfb1bb59dbed8d2d35ca65da9781d4e31f4fd6067a23e57bff3c056469665207 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-156938 Malicious code in ita-23 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d348818a6346cf6dd0780e983e8115d2da08cf25d2e5ac98e9e3bbc35300339 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in teagood-nakamala43 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4afebc4758086e4299faca621b39052d74b789cc44a951b0ef7d99e15f51c20e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in configstore-semantic-ui-iota-google (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 522661629c144c726922f88e7442ab71fcbffc91daa5a123695bf5248c25ebed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in tethys-non-blocking-hexo-spinner (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d885f6678a047d144fa23ca12189e3691db1ed724e104927120acef8a43c47e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in geckodriver-ceres-celeste-firebase (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 952704ef7609dad642d9aa825a3fe083c766943a6dfa24ad1f0f7e2f82789bd5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...