11 matches found
Malicious code in cressida-jwt-loglevel-fetch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c579391a28b717cc3bab01d83cefe0a9573ccb0c4b8dee4c27e98fcb9b1adac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187703 Malicious code in koa-version-scorpius-ceres (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75dacef98ce0fa1a5b9c797aef9cabfffb1071bd052305809bade9065f2f7e2f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in poglymer-ogih-gagffiggaa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0e9cd7e1b2e5a3e30e4b65a361af990075794ced9cb31395854f8b94270a635 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gabrielsilva (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eeff4311346c16b41c23d7865a281a0e765123b416e9f485db2bccac38e6987c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-154238 Malicious code in dajouka-tsfdaa-t7a (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d825781b5f2ea702a3883034cb1c5c37441a5d30af2afdab26205f485f54f463 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147715 Malicious code in scorpius-scripts-flare-gatsby (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89eaec14f2f27132288be226ebb081c4188c0c06b56eb85760ea8dc44db967b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in jaja-lutis9-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13ba47bd752d817e4c18f4b66cec82fbb8e248364bcbe94ef2314ac57d980d50 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eka-mendut22-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e74f282e25433e1ac3525f7493a000d8362bcd243764d92aa991867b9c736c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-113628 Malicious code in electronic_piranha_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e51763994f056f2ff02b550af089a54d4ed0718412d11dcd4c8ea7db1624f9fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cheerful_vulture_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c30467e9084f126817bb717404bf75e743f055673704a9c152d92c524ef712c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-69722 Malicious code in operational-gray-jellyfish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53fb1b6aef8c89983f27b6c0f5469e88d6727aedb8124f92e22351e0edd8973a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...