12 matches found
MAL-2025-187666 Malicious code in karma-cross-env-mocha-grus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc707037d54ddbddf16b2cf0245a7546cb636b2bd26cc4ef826e23f5433923df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187305 Malicious code in heka-markdownlint-rollup-node-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3918091bf1dccaa7a82585cf98bba21f487de7dad3e092c4d5f4c7b1b3c7e9ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189515 Malicious code in sirius-darkmatter-lint-staged-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac68762e33089807478b221c74a906d070cef10fe0699ea1243ff9090ef6d249 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hunimi-satihu-ana (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe442e1963ef70923c4c1a0b2f2aa233603f8f69dfda3233a9d8fdc53a013ba0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ameliawilliams (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b01f2712d6212d991b6950ba90a0cd5ccc8e8bdb6bc764ff4694b711aa866f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-167591 Malicious code in teagood-nalikoli37 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b70f0cec388a8189914950af60789ce1ea0cd6b29d996d52928ea0c63e3c1d28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-162862 Malicious code in nokire-loklok11 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3b9d1619fd2afada4572e4ffa9691fb2d85d532e354eec8443550c2a061e392 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dagda-algol-cli-telesto (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4ba74dd1ed1fa86b1e45b96f7225f5be8ef4b2a24606e0c856dada5cd3926b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140088 Malicious code in bootes-postgres-module-ursa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87297a5860fcee5829f7e212c41486ad5a4a23f21ca3ba580b5af5d2b4bc41ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-108188 Malicious code in rolling_panther_purple-28 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 627eedb485e057e34481e3e2a0879159c3d77f9c125b84bb82f26c92a6a30903 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lina-rangi98-tititugel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1458058c654470a1aac587c64a946e142317b1343a09ea524931f16f9a81449 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-63588 Malicious code in iwan-lapis63-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b01af020524992a4e5c90f601dd4025de29e69d63367f5317027c2be96319f31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...