6 matches found
MAL-2025-189675 Malicious code in stratigraphy-castor-subduction-thermochronology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f95e074cf44d088a943a7366dcf7a4c1bcf3bd044d9b79a6733eab0a5ec6e5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-182642 Malicious code in imugiay-avg-daiugadajdufij (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d99d4e1d71eddebea66b98c5c96698b940e990c10c38e7e8fcb96e154eb72ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-116365 Malicious code in patria-mendoan58-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24eb9014e107aa2e6002615fb35646c1de283e25c527a2f6181c9d4856844bc8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in riana-miemee87-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1494f985030649d9c0988d349ff5bc13ce664dd67e83d258d6532dfa08c083f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-54482 Malicious code in qori-klanting23-tititugel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f5c37e399aeb07ec0e5a36ad4804c3cfd1fb649d3ba2daf1069c5a8753f167e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nadia-nasiuduk14-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f26f929adf468b0f5595aa2984293b77d44259058c51b679e8bc05a29eee0a7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...