34 matches found
MAL-2025-186639 Malicious code in draco-gacrux-carpo-await (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e99af30e309e14cdab037f48e58b659c2e89b47c57ea0ca10d2d97b6c7f47586 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dactyl-loopback-axios-lacerta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94ef9b4077e3c6ce19e631255d57d1edaaaa35e2479ccaad486e1d3e0d6f9a3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in framework-bellatrix-await-unuk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d9df861b47c98b33c486f725c68c2f4aa0a6bd786a502e39eb00f5c48648914 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in float-encrypt-awk-dog-export (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1c90aa27b8b2e55c0c6642bc683065f853ef3a1db966142393bd9fc8f637f11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-176926 Malicious code in nurai-sutaif-danabufi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72650fa0033b83b981496abb481bd159aaf7d57029c699eaa53bf0dded9588d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in makan-aiuga-uhao (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e145e72be5016bfaa9a53799215906a79c70ea169ec68a84b9fb487faf711b09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in samehadaku-msssi-cir7 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9766c8d7bc4d3857a11bcc081eeb20af10f806efbc7e9ee4be622387b0d1ccd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in syahmuda-poke25 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6418be1af3baa2d15dd91892c313f873ca83c33ba82fe628dbffdab67b279c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in uaragifa-ma-sayuuf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ba49a838681c56ddc259a69626d96c26b3058dc3619bf06b7814d20063c4ee4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in halley-phoenix-io-webdriverio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 731fa23aff766760f0a59030baa0ab809c1d44a802dee5f4ec14814ab781d4ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in materialize-meteor-frontend-centaurus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c1f0cc1a5f9a889bb9d25e3c44471dfb495105e55f34256120a75de091f1531 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in selenium-request-rollup-plugin-dagda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69561dc4e7b46a38b4c19ab3eb13a91df53b9013ea0c195cd527c8664950b36b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in process-titan-mira-middleware (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79408ce54f9c53733daf659f97806d17e40693999ddfac0665977b04ae1c8558 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144373 Malicious code in library-chai-carina-nuxtjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf871770e94c007e352f573d44b0c9597e55491ca57363731adcfa816c01b711 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144429 Malicious code in link-update-jwt-chai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d19bb2a6946efa9f9c2e4315a157ed2a2d20cf0be24ac89f296e1801214eab5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141109 Malicious code in cordelia-shelljs-gulp-optimize-css-assets-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7027c32eb0a3ba723ebe11ca4df1274d19f003ef78d0984d760230a9baaef860 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-125228 Malicious code in broad_harrier_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c1bc23d6cb32f7210f8df55001b428a1b6fe8aa39442db26ffb9cafb2acf62b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-121042 Malicious code in joko-dradag25-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5efb880c161726ed9b55d6e93fa3e50625f2e74d594112e8ef2195c44eb1e8f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-105787 Malicious code in melted_porpoise-silentdev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95d863cfaebf6c845932763ba2d1d77df7db0a0b203cad1de277858409b1d57b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-102252 Malicious code in estimated_crane_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38467e3b6be96fc947b1c3bc80c9f8b59ea50f31f12c106652e944356cf796a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...