7 matches found
MAL-2025-188309 Malicious code in node-config-phoenix-regulus-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d81c361ada3f219c47cdd46b1840251c77fe413829cd1bb0a4c630ac731f915 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in item-atim-ku (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86b69c3dcc16fdf9ee876642a7dde0e74d202652e098c76bf7f4712eb37dd502 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in riya-34 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15c06393078ab01499d4dc9be643be08885b3f232aa4449ad1637b973ffb06fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-175935 Malicious code in mahiyaa-sutiayanu-ganofi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c7875e917b80f15d55fad5112d285f68934a6523ba0e69a3f04666c30cb1b82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mensa-protractor-json-ganymede (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ef0cf775eda6da5ee72ec9ec108786c8ff2381ea7d373895eed288b9c05b03e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-126984 Malicious code in hadi-gembus65-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96a3b49d3954cacd016a3d8ddb997c5beaaba2cc9a390547efbf351102745a99 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in envious-plum-cuckoo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af3e5978ac43ad3d3cfe803eb52768c51dbf2c70be52d37062aaebeff97e8966 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...