103 matches found
MAL-2025-188490 Malicious code in package-changelog-css-loader-slidev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf183518eb8813f78ae38737637f90dad98dce465ad977d4ef42935ed1a8da7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187682 Malicious code in key-kernel-transpile-test-yaml (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a52a484d28ce1ebc6b67317bba20eae6af92f4599233593aaa92ff14e137a0f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in remark-halley-terser-sagitta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca6dfb854cfd17d5b06c05f8223eeb22c789a6217a138f953d0edd5bc0997597 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188467 Malicious code in orbit-luna-indus-xanthus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ed9d865a656c770e023fe92f67cb64974da1cbe3fb0141834bfffd8c86df97b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in petrology-prettier-sirius-norma (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe5fb6e174c1f7bd6b8a627dd695290aa83eb2a9dd2af94c2c5856325018e705 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gridsome-slides-pipe-socketio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d3041ecadbfa1b9ee20c448a9f21b65c9463e9e394b9f82d5a14402dab7ac41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186039 Malicious code in catch-float-cluster-assert-load (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aef58c9f874c23e8a9b27a97cbc7a46fbcce68e4f6bba08731fce9b4108467a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hitale-irhar-aaeasdeadeasdeadeddfaaef (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5eaa73a67b443faf4a7497f19231e16251c731c35a620fd7c22af2676d2b5d30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mitali-don-olikma (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b98bd63ce5f1b309d6782183d3b539fe56d3f12ddb6441ecd48dc1a7de2c82a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in itale-adci-gnyagibhghygyu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 644ffef31d064f7c8f8da47da02f49d6bf25921d56bf6926069cb7d1a319c9a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-181822 Malicious code in avangs-olims-noliu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c3df62744d845f27f36c1f2021566483b119f0a95cffc5673b84f7387e01e96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in teate-thy-sonic-tidti (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e99a63bedddf395967d2014455b65fe7065a36027546efbd1311cf7de80e026 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-178033 Malicious code in polymer-ibhghhsigsabo-sgahsdi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04fce00ac42ba8a3ae17c14f36f55a8884752f55406db76f670437b46f9fd6da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in riya-13 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 936362886453635fa0be1be2ec45e9ece18319e7a0e273011b2ed113b02b1948 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in poglymer-ogih-afmaa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 712fd1241064f45109470438f880867e9197d1a26465e9d6c96e2a741b528ab8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nokire-kushina50 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c839310308c94dd9aec8241a25e1a05a711d12095f468b2445d0ca19beff9e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-177215 Malicious code in poglymer-ogahh-fifaf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 186b2b49649ece88ad4124bbbd1d445e5c3a9ae7736b8cf8856a88531aed0b74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ihsancroissant (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39352bcaf4f39873fcf294026ab547b67fb057b235909b377b7d7d5c85afaadf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nusdtafr-msiuyu-masta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f9a78f8d3398684ef8ccf4206145902238a55a5d88dae9841a9194b0dc0763b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-159509 Malicious code in manaf-asin-nabsd (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de26b760fdeeae2980b3bf9064790525924d3f0136dc8f47cf409484d4aca234 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...