43 matches found
MAL-2025-185864 Malicious code in blueshift-lynx-dotenv-safe-morgan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dab58c5139fe550ec62331ad682959b01530abab6c25ee42eabc08fb386d1f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in small-bundle-function-minify-query (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d7181905cc835f11cdac785c854058f183bcc67f7eed82c7a1b53f9b9d89bf2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ethology-phoenix-unuk-tailwindcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 559be27cfb1ab2f6c01cd82e42610f9bb22a82253b37efdce765d9ca8e93c5ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-182868 Malicious code in itale-adci-ggryuyegfjbsbebu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b428980f3c5bd931b3cd9f2de67d90340428999408512b3dfdf0c7d543f1909e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in manu-oi-gisisgo1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 935558bf7fcba45b5e0f1ebfd079722900bc309adbc5580ac6495bf463d3991c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-180485 Malicious code in teate-thy-sonic-hule (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2d04eb8ab94bb5bbf59091db66d912a83ffff2b31e18e8f6420c3128f94a2ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in teate-thy-py-zowo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 525bd12891c0dc0405405be428db5d2fe35491a3a481d1974042919e59353834 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-174309 Malicious code in goodaan-ngusafa-ni (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffe02b05f0f2f0c3e3acfe8e0099d30a43c33cb518499ad9cdc4835275bfc70b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-172512 Malicious code in verts-otfioo-nampogfai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d8120514cac7185782483595677e4e4960a843ae9836522b052179cb6ff622e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-170577 Malicious code in yuda-10 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afded46446dfb0efee0e23d16389c869040ee1c346302a8a0526ac11bce6a4b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-152244 Malicious code in alfiansyah-poke35 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b9bb6303f6946919c489cf3498620cc87a46f4bf6edfa88b92594f540890ce6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-165688 Malicious code in saku-au-idusanila (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd98a720d15bb14274b95708e3e8bae52a3c8a450f6efe91c13ebe35ea929c20 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in uinsu-lost-dinabuab (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc776c6b1c299b380e52c7a2d8df42dc25036108c222bd30b29d25f3bbad7846 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kamasada-nuati-espanyo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24b6cab72bd405d652867c5f6c8dca04c1dc41d0b936d7afa854f2c523377eb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lookingan-namakita21 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9050be56924898b38e0c61140f92a05a2ea7e56a20aa851f83fd9ceaecf9f455 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in piluka-alulni-pibalima (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0999c5a78af08c4c047b8e96a4ef6f411e39c46dca6f952d2174741faade6aa8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in tehah-nuyadtasg-amantan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2f994bb3caeec012a71be302c2369f9a2c2a23fa21d8f5803d63bfdd8363a3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-166114 Malicious code in slamet-poke91 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a774b0f7c6e23cdf88745729235c405da93533d3a4e57060c26194ac0856dc89 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hermes-css-loader-request-restart (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adebda2e2ae5a06e49e1e41ee6fedb093a0ef37a243ddb9e28e4847013c248e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in got-carina-hyperion-norma (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7b434152d8602e936f239a797771f7336b090f32b8879902b6e3d50f8699f81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...