13 matches found
MAL-2025-185230 Malicious code in soniec-kat-faveri (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e29092ec5a62917a41409dd508ccbaea3fef39e4ac3dbfcc23f6e9c5f2ae0bab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in goodmanmax9250-strange-route (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f15b103b79b0dd7fb98f8361d4bad68091eb22e7e0c760a68ace301860a83d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-157791 Malicious code in kuinsu-lukoki-nbtabi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 060ac6d713ff926246f0757aa633cf7c1857e203eb5ccacefbc302b901619071 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-156556 Malicious code in intan-46 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b86d252e471bbccc19506f1f8a4c137ffc2963ab9d2eaa35d9633adf085d77f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-168359 Malicious code in tealove-lady50 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19207635e48c0996f6d61ffc8732a28224cd8b39b08f44e8d0bdd184b1913336 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147677 Malicious code in sass-loader-mui-library-optimize-css-assets-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66e74a0f0b1190b28e62b75438426908b78b6776a7293dc127d4f7f037d74279 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144074 Malicious code in jwt-ganymede-meissa-playwright (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa0c01666a92cdf3398dba5ae53b375ce14478ed631928b37880ba1eea55e208 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149828 Malicious code in yonder-acamar-terser-webpack-plugin-ariel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d67598092c99278899708ccaf956db5b784f63e8cf0fea187c25b581869382a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hanafi-pecel90-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c0ef5a21b064a0fed14496e56a8f0853918310a05ef29e86e122e698ba91813 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in communist_snipe-appteadev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2df43668df009ba4eb078cd253e4ec5eefd27e8449b9f347c8e4eb39caf9bd4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in scary_wasp_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 698f9b879e25e35d4140d829caebdfdaa444904c92b7ce8f569009460f17dfa8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-90806 Malicious code in sure_dragonfly_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ba9eccd537908d66c890df1839cf47d8ea3ae1e3a06c8b435c9478841afd4b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-73173 Malicious code in gita-mie32-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efe3620cf318693b6dba94e6193bcf66b20b5023bf5f6d0a0d0b3250fd006fce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...