87 matches found
Malicious code in ethrpc (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b1eff108aebd0c94cd1b2c9dd2321060f61236e0dbf655c62f729169dcd5d5b3 The malicious code is in the ethrpc-keys package, which is a clone of legitimate eth-keys, but contains a modification that silently exfiltrates the user's...
MAL-2026-947 Malicious code in ethrpc (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b1eff108aebd0c94cd1b2c9dd2321060f61236e0dbf655c62f729169dcd5d5b3 The malicious code is in the ethrpc-keys package, which is a clone of legitimate eth-keys, but contains a modification that silently exfiltrates the user's...
MAL-2025-186462 Malicious code in dactyl-transform-nightwatch-petrology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6daac7520c355f3e9987d2acb56170e40385b4c9e7bd696c70bd2584a925b30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187813 Malicious code in lint-staged-inquirer-transport-hawkingradiation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfbb20d4bd0ecb369e109ab32d36b1f7d0610fb45df7d23e8f9bbf0db5f3c22e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185109 Malicious code in sonic-kuig-tgacedcuadojxaepav (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4dd3358820ec3b3085fa6d69fc9cd4d9126928fa27413b50b0553abe06e8283b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-181204 Malicious code in @akunsansan0/biru19 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0ccd8e21e64f04ef0fb7a4cb56757c60065fc6b20f77e1df834184b08ab4c77 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in miftah12-miftah (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector feab06f97d7e11742e1497b0e54caeb83ab399e4f836bc85488d19d9e484504d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nuilva-daerde-oagfafalif (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16473925091256af5c05ec9e2288cb0f885b49a61edce54016972efa0929a678 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-177617 Malicious code in polymer-afahof-rafgabavzfgbo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a81d342b500f4a615e94afa10863a91f4729d6fed8273ccc224e8e9b6819696 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-178409 Malicious code in sahnim-sati-adbia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9224e75bc999fd2e40f57e924dbb4e58334288bb3c6ddb7f4af0d3c7d3ab69b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-155355 Malicious code in grion-tyustu-nutr (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5986621d7df00e61fe46460503469d136c49b0a05814357094d475f5798da395 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cinta-97 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc322839eddf83cc6238ca5f5c4434326a1f07a041b8259a23085b354fad9978 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in miracle-diook-ujakaaubaik1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0a3334670495e83437e2262035379865879249a1fdddc2a0d001f3df59b8345 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in technical-alnbio-toliaanu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a8967c9d03f3781890e9f8ba5b6752c00af44df9c0d33a363c69f41118595be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fitra-poke30 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25addd62faa859d289842a62b456cd13cca198fd3a481e101cf948d23aa9332f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-166920 Malicious code in teagood-lokika54 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05c5a29e0161befe31c8736d1f88ec854ccbb5d3e1a052b1e1fc38a004132281 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-159726 Malicious code in mansa-nonatai-amutgiag (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b5aabf040c87d26a0a5852e6793deef938fa02422340313d51541d87ec14059 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-151112 Malicious code in abeh-poke16 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85a4afef2a1e396c5099e6296a1cda1354063ba7602ef08280d2ca823cdddd4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-165140 Malicious code in riyanto-poke33 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46a78fd6866c6f7d459bf1f9bd97f9e08efd6f02410e63b517f95a8a9a429a39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in europa-kaus-ini-procyon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97b8eddeae826b1fb99b6c944ce28b1eeec45196af20edf767f02e9c7e31ad56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...