44 matches found
MAL-2025-189197 Malicious code in resolvers-foundation-library-kastra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c05e9755af5296428d20e2af407f0a2bbeeb2519e0199e94b2aca7fc6210c71a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in protected-thread-cron-integer-alpha (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a8a54f3515cbdff294501d3b30177d1f4b221d5540a7178e1efc0fbbdc57b0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mufai-suffi-cagasfi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd20af7d5a2e7d927deb92f09ce4274844edaf40a1659e6bd640e056989ae1ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in akifhassan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd6ae29d4fba492ba1f5ac7244e6d0314aba6b0806d4c4c83f9511e71cdc9c6d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-154887 Malicious code in fadila-poke151 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f1e863812009a74e9569d88f4581d56514644211eb4abf7428c36ad711a78f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kuinsu-lki-kopanatiabumi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8b710ab145436a65c97eb0f3cec67a44aa17e0a63bab263555b28036a99c975 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-157096 Malicious code in jimmy-poke39 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f74b9941e9cfae47a1d3c8ad4670405f8281f74d39ca847df3307f517a14ff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-153227 Malicious code in avminah-fagnias-ifiafgaag (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a62522c95880abe55de5a4020b065edb806b3ab8164a40cd181f0ae99efb344 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-150759 Malicious code in @miptaa02/isaqeg (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a022beb203b84be9c744de80a4aaee9bc8e2a04d64b98fcc8387f1c76d6f6f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nconf-electron-commitizen-pegasus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26c7414e208e7430f5a3b3b2c501f26ce402685f3fe6c97836993afba3b9dc4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145550 Malicious code in node-sass-polaris-eridanus-dorado (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e415838ebe67bde60565e881599dab4430e8c79f86c3048a0062a4c377bc419a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ignite-test-less-loader-kaus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc7e8a2539b21130591ea1153b93e93d2c8cf2018869f731d6cafd01ea8f9675 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in venus-materialize-middleware-chariklo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7edf3762282a5e21f97e55705f10dce56e313a7824add172bb388fa0ff9e452 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in draco-hapi-luna-gravity (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f43ca38f4a170173c94afac1558333ea2d8020e9a3392cf0aadf92300b6959d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in thuban-acamar-geckodriver-aldebaran (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2efe942c0be1e5d266bb42a397eec4438ab5d17f13940591bdfcc69cc152a4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141707 Malicious code in dotenv-enif-carina-fetch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6246769778c7fcba8c511e8df6a134d3b68f727a2080940cc9609ecaa912b2a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in geckodriver-centaurus-nextjs-figures (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ba9b9f0ec80de37a48f007e55dfa74069ce00fcac7ef4f211b533318ac76a0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139645 Malicious code in atlas-inquirer-jabbah-protractor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f663eb7f0ed0ca0461160ef8e2dc4cfcc7b4290eb39109ff4c70676afa0e3212 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-135968 Malicious code in ocha-taiwan78-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd1b7be4a72f14d76811c59308abcb5921f928cb3a2720898e67a9d5a4cbdad1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-134831 Malicious code in kiki-sate24-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01f242cf71d8a58e0fe400122eb3635d652f7c7dd38e0219cd6c819327092c6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...