13 matches found
MAL-2025-185893 Malicious code in bootstrap-solis-bulma-zooarchaeology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd3c4b90b728e10c24b350f3bbaa8da21ea46f25f548e1c3a7dbb67672704c24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in commitlint-config-angular-sadr-cluster-mira (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80a368a0670a1239eb372db7a1d0764026369adcca6b15380695639d0c6b5379 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in poglymer-ognagh-agami (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed3dc824c97cba51a6577d26475c1181d301514adf2103cd5a18faf9f64d38d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kentung-31 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 313dc870bbcc127da90f60c40c356d8b6328e80fde07d2c421b6a78303f8e501 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-162223 Malicious code in nokire-akaza12 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da7b11f5d19f38aebb9b11b77829cc1f297913720313c772afe3c89584bdedd9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149118 Malicious code in venus-parcel-markdown-pdf-pulsar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21d77e33fa6ab5a9f2a3b96a855635c489b92850c24dbce745e25844b9ea32b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141793 Malicious code in draco-hapi-luna-gravity (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f43ca38f4a170173c94afac1558333ea2d8020e9a3392cf0aadf92300b6959d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142700 Malicious code in frontend-carpo-yaml-hyperion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47cc2702bf536ac942f0062c5a6c776da5fc9a135b93382df362258e62dbb975 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ade-bubur58-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7a7ad41b5f26af7e5654a65f8ed858e8d4b0cfd0b51bc037e6a7cf48bd83322 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-107014 Malicious code in peach-notthedevs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a861896ba8fa47cd6a6ac74dca8e3821dcc397af38d898f8cceeb5cbcf6a579 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in proud_lobster_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae87d2a1e0b22b4a472ace1dc11972ad766df92acc897019117d1bdc64574ff0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-63970 Malicious code in laila-rujak37-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 944d9f2e449f03b0d894b0b43f9bfd491cc96f06ad1718fd3004aff143c56383 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-50127 Malicious code in citra-esdoger76-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ec3162e307ba56ea5ae44728c19ecbacba238d7d8a421fc12d25690a1a92432 The package citra-esdoger76-ruro was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that flood...