8 matches found
MAL-2025-189437 Malicious code in selenology-zenobia-loglevel-prettier-stylelint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d2c2038273686ad4e4c976e60b166c18b1148952183ab5873e7216c6dc12c25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-135886 Malicious code in nurul-nasiuduk73-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0addbd30a3156fc9df40cbc27555f6f7c19ff37b547687ea2818947fa5376246 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in erick-kupang64-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a94f28d81e1f13e76203789ee0026c162cd761f7b45f4fb206743b6dc7ece8ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-115827 Malicious code in miserable_tyrannosaurus_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54f34b186798d15ec018b1e6254244a778abf3c0aad6623c54dd03eda7acb97e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in silkworm_maroon-7-tisubasah (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f53e5be98b424decf926358c5b0a2edb5df9a830ac7b27ff7ec421c09257f4c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-96094 Malicious code in psychological_carp_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f728fe10040d29a22292f15dbc6fc19e87eda43d1dc6ecafb8179cdc6cc0dff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hadi-keripik12-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c045a9a679d5a4c2fcf59b071a8cf430dd65f20f375e45d9c8a0171f337f872 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in registered_hornet_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d969975f13e09c5d0a88a8512a88ca6fb9c08eb4cef434cd6c017b7805eb4eb1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...