6 matches found
MAL-2025-159339 Malicious code in manadi-scavior-darena (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56732962af9ac17460e9df5daafce33cd57a929acf0725f70adcde86bba5bc84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-155590 Malicious code in hafiz-34 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ca553dde1db0fd1c6383741d28afd7f32d3969064f5c81449203a674eec3ffa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-132838 Malicious code in dian-soto21-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d02573fd1e5dda6c6349db5ce2aafb3f4c8b1bba973fa1de37e753acd9f85c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ocha-kue20-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f24fa21dc22fad4b29ec2f6f020666b3af1c36abc6c38db2a9e9da2192b293c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-114859 Malicious code in irma-jamblang18-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc0a3379393ff6f4f2bdc04987bea1a7bd78fc7c77da5895f670d3e371f90172 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-62211 Malicious code in candra-semur5-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68a6c70543526e180741a0297662fb97b1adc447b155dbe014254f8a1c69f625 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...