40 matches found
MAL-2025-189603 Malicious code in spectron-chromedriver-thermosphere-cosmogenic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c15b55ba7e54630255482e6868b8f640f70daca32947947e5ea8822a50d97d43 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-185430 Malicious code in algol-troposphere-bellatrix-oortcloud (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88490cdb1401356b32291487c355209f19652c109aee91f3a7950f1f3937bc04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187314 Malicious code in helios-centaurus-juno-lint-staged (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 929260b67680ed0507a691726e1f4f84a5fb3205b6e1217e1356966bbbfa20e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-187879 Malicious code in luna-mira-eslint-wezen (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b68370c7fb19d1cf0730a09b2a14c5c2b57ee9fa7cb0c3a9a10b30feb22bc4b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in inda-foji-giauasfia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d33c10dd508f60d91e710b5c0e125c1a8053d35b8083d4c5b8eac6066b30fb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-174993 Malicious code in ira-6 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6467432729941e6eaca9157f04812bf3ae5f2501e370c27a52f1c942bc4953a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-172098 Malicious code in apasih-me-pa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 435ba157684accb406377a20fa537b95d30b62610991f574d9c0b7010506de34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-161909 Malicious code in nasrul-poke21 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6660721ee2a9bec71361fc155f69422320a8c1dc2cd690ff7dbd127d385e5bd8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in alita-poke27 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c26702fb24f0a2b66317111037d1b367d369fbb803b8382eafa74be14472566 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-164546 Malicious code in prayoga-poke47 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f465ca81e34735f01541f0935b053cad221a60353f83c064e0ce21c63a27a839 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-169146 Malicious code in trevora-aisa-cir7 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67f73a07adf3e4f684ed93bec0113702bec8127e9dd8eb36100fafe32ec2f71e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eslint-gatsby-init-express (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2927981e2214a116cfa4d45c9f21260f04a036db99fe2eeedc2531cb6b09dc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in heka-quito-pipe-eslint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a3cb45f4fec9cb327be07a8aedced75d54aa818fe1ca99e50e7035a8a620031 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145537 Malicious code in node-sass-eslint-plugin-solis-dotenv-parse-variables (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5aed2df30501f45d7be301a0e5be1666e00b4b3342c466d56d145e396b7a877d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in local-run-script-ophiuchus-global (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4bb8344fa0bf708a5d389890c5264e3d60bb553c221469e2dcda9bf9d1a03281 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147783 Malicious code in sedna-pavo-mocha-ora (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f613be6a51ea941638b5a12837877d984872eb3b1f8b708a07c955192e00c566 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142801 Malicious code in ganymede-hexo-gemini-winston (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e685f3ac7fac4072eaa0deac3e069d06f956e061bbbfd2b1b7c18bed89b22973 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-125743 Malicious code in dewanto-pecel48-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d2799962b655cbcf6554026a64d3857d962a139b83d5cb079339567de49eb30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-125891 Malicious code in direct_platypus_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae3d69a770f8a253fc9a7498bdc9955f7fafc3e71d864be9221adea09ae77831 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-126878 Malicious code in gita-miemee46-wekto (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0920912c3694b8786dd714d82d240bc31da34d911ec37b62a475bec5f3a41923 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...