5 matches found
MAL-2025-189004 Malicious code in quantum-norma-canopus-dotenv-parse-variables (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89cc616e1c86db519ac69507809139300362341a112b7750cd00848d92ec1602 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-167320 Malicious code in teagood-nakamala54 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ee4099f7a34f9a05f6456161d9a55567c2e671332c5ea48818c58e01d85d8ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cluster-markdownlint-equinox-dynamo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56c171761f3cbbf27925b3aaa8a534f93727568b8a0eb9097d587828f151e01f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-133424 Malicious code in fashionable_sole_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55998b37fe8a49c9c7139db7bdfd82bb437371f4c5425d22713c7a9fb8d43a0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in deep_moose_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83cf896fe24295cdd74666342991ec1b957b7ec07fc4d302ae8c24ccdb8e1151 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...