12 matches found
MAL-2025-180768 Malicious code in teate-thy-sonic-nuses (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c652c988e6d20bfc94eaf3d10f41e5e0dd989b4df75bfecb1f604123334bae7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nustr-madssadn-syfahdmuda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e707a8889f8700513c3d68d685e17b431c36b38967f118a1a835d5026807c8ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in carina-rocket-shelljs-rimraf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca87fececdbfe1c01f7b543ecf0508dc2cdcadff80d76f5c99691cfd4d27abfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nextjs-changelog-hexo-polaris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27cddfa256ffba81ecca7c5db6f5e398c8571f671a385fae8b63b009a51e64d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in uninstall-sass-loader-pegasus-weywot (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91affc7f9bb256fde82c4268b20d43912ffe30773a0fae9ed34039f4e000131f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-135138 Malicious code in lexical_boar_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01584bb6824565be2304021ced74230065d9091edf342187d9cc635027540f2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-117983 Malicious code in wati-rangi80-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb9a2e20968d20064dcc7fb7f37dfcf418e47f7e19f778b052cae0f1fd0bbabc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-113179 Malicious code in combative_wren_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 882dffc5eaab2403ded223a96505a1ee70ce6537845e559b08509f51d18111f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in upper_puma_0xrequest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74415571fcdae9d6cc27d977a7fd1fc12b948cdf5612b3abb31d458b4f221a0e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-87328 Malicious code in kiki-kue89-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cf63452f4bcd93165e4d1e8b6849392758e43ccc4e00b9b5749563213c9cae3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in yanti-nasipecel14-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8fbc61f6ca4be8d0f41733e22b070883386076a4ed8398f52477aba29074d6d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-71308 Malicious code in united-maroon-kingfisher (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1280642689393e13dd5981428b4c0b46f7605d9eedc9a9ef26f5847946e9507 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...