12 matches found
Malicious code in google-bionics-flare-biogeochemistry (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 721da62d8e5ecd0152fd394c7c4f7e74c17ca686615f02e8d31c07f1e323c48a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145955 Malicious code in parcel-colors-package-carina (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8816a40a04fc78507feb370adc487c77333d15f2c73a6b91116e678b3fd138d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-132294 Malicious code in brainy_lemur_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 678d9b348696f0d98fe04d73abd552d42247e07fb8f26f5bed088796b464df0c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-124941 Malicious code in andi-kentang97-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f18c1d17da0da6f31e9706aeb0ee6be80c9d5b0de83dc2c9de9313722aafe047 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kurnia-menjes84-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e6a1cef9b0bcbcd758a0ce1c5a1d38b7de511a85f5729a86c3b6009f68cb83f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in candra-brengkes44-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd10caa4e150ace152165b7d9f96fe2866b5a711cd9a53fba847290a4518fdee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in amateur_carp_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90b9b6413c748b3558dd07a6830fbd00cf4c3d5b8a03410320caaae9eab4e9f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in harsh_dragon_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5945addd633413fa1e34c2f882dede498673f0148de9e5ef48ca34cc875e0ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mulyono-sambel59-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40583bdd8f4492eec3a5bbcf5661c2b97e30a868faada49b2981757576b26bea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in arif-kembang65-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06dc57d6e5a9bd5e01c2a2814e3e1cbf77a43ad98adf14f3a0cf651653213c6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in frail-orange-crocodile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01fb85d9d621aed854fb72ea4742c2d6853dbdb00e441920671fd39ccf303f97 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-64002 Malicious code in lina-bubur2-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6b14eab8d0d39e9d1054836a21a743b18aee4828b632f97f33231db6b1943ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...