202 matches found
MAL-2025-163310 Malicious code in nokire-rara23 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4667814a77285b29497b15eb08fa181450756a0c8fcc4a8c29f5440549bdcf5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-151106 Malicious code in abeh-poke10 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 22f63aacd97168d7dea8e1654d522728c52877f89f151efc75944e78faedc52b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-167930 Malicious code in teagood-yakuna69 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cd73bce045003126029cafc0f5d03e60b96ead8be9518c1fc5baec873b7d4e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148541 Malicious code in terser-ursa-cosmiconfig-json (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6488da569c06a27b6cc352b7d86c2dd028c9e589293234b9019272e6a3c92805 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141511 Malicious code in delphinus-ariel-apex-shelljs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b947a9067e09e6ea0296b684556baf143d2ae93eb8a8041dc79efe79f7e54ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in jovian-hercules-hydra-antares (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37d6e4e4353052fa7aabece1ce64d442962f322754056b8fe97872698aa362ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in yaml-loopback-cors-postcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e4a31ef0bb41cbcf9f53fde2c2e8f87b92c8c818e43d8d884ff63988175d9fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in passport-websockets-apollo-pipe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 181d5bf8f8e773b12665333b95e60d88264ca346871341c8131c2f24facc5beb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in repository-loglevel-node-config-react-bootstrap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf96d6999bdbe58b3534415e7f4e8060c45e943b0be6ff42b6a86c767f282ce8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148084 Malicious code in solis-repository-envconfig-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c89bf2c00540661d925a3c568b3f07900ba1f4bbff48ba51c779203bc515bb5a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141379 Malicious code in cygnus-schema-pino-playwright (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0dadfaf6400f24675483af5af45b3679d0f5854fdf0ffca88edf168e4aea9ecc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148938 Malicious code in umbriel-dactyl-solis-publish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38d249f078620c3c6197c6535f326ca223dbf289a315dbcfcfd8b6a9b44553ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146165 Malicious code in phoebe-nightmare-npm-less-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 774a47fdb518927067c69933219ba0bfd8dbf5fb177ea54f167901861846ee65 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in honest-turquoise-elk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98b24c315bdaaaa70ffde94ffa47dd1cace75a29f6a70c897672941508a87bd4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-138149 Malicious code in xaver-sambel23-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 979e571bad33aeef3b525ae41f6b3fed1aa83173ca5a8ff9e529facb48d21fa5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in riana-jus27-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f028881965d01f7c4f48078a8311f3a125d3f3384620df92bef251e63ac930ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in putra-jengkol95-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d8b39d10868f65bd6557be0eeb3044b8c9126e3262b4543aa41bfdb3b2a991f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in umi-kue30-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d41748fe7f239da0aa1ce566a40c795ff71a24821613bf4a7822fb9cfa1cfd86 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in impossible_ptarmigan_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3fc16ec40cb8991eb21c1e8befbeb06bd6d2796c9ff0a9ab20632ff9c7e749a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-136258 Malicious code in preferred_anteater_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3827b70be43fb5f283c479562307d073491285cecc953d5423fd4cab95aebfe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...