7 matches found
MAL-2025-139401 Malicious code in antares-cressida-astro-deimos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a083a2e240bd569f359ce0153cdcd1078b75e23b0cb92a3fab70d2aabb5c2194 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147565 Malicious code in sadr-jupiter-jovian-halley (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bc7e063658215b0c112e54f4d6bbd95b31dde9133123195364ac48534b2985b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-132980 Malicious code in eka-lapis2-sumpek (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed2164327be88c7013492c07c9785f090ab393f0fcea293206b7a037743539b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in vera-ketan2-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2a59b9adf1fe0152b387df05541f5fa1e9d72205fa0fed3a59638d692c8430f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-115532 Malicious code in lisa-ongol-ongol40-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd5915fa227deebac61814e09cbb841c9b8281da92b3986e0248621a26af76f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-93955 Malicious code in deliberate_clam_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e780f4192725c6ced1a5888666a7daf120957f282ac2cc8bb63469d455a8b222 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in irma-lumpur51-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc69cba1b829859e4ec863b416a6ef15e35ea8f4c583e98eaf46a0fe6f874c7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...