Spambot filling up repos with realistic readmes and publishing to npm #138751
Replies: 6 comments 1 reply
-
The commits added to turn over new releases are all garbage. |
Beta Was this translation helpful? Give feedback.
-
All of the repos have borderline fraudulent READMEs emulating a popular package. |
Beta Was this translation helpful? Give feedback.
-
I've reported the packages to npm and pointed them to this thread. |
Beta Was this translation helpful? Give feedback.
-
Perhaps this is an attempt to scam something called the tea protocol? (just learned about this). https://docs.tea.xyz/tea/i-want-to.../learn-about-proof-of-contribution/what-is-tearank Most if not all of the spam repos have a |
Beta Was this translation helpful? Give feedback.
-
Here's the code which creates the nonsense commits. This is triggered by GitHub Actions on a schedule. |
Beta Was this translation helpful? Give feedback.
-
already reported any updates guys |
Beta Was this translation helpful? Give feedback.
-
Hi,
While browsing packages on npm, I notice quite a few recently created packages with Lorem Ipsum names.
Looking at the packages they seem to have useful content.
This looks like an attack from spambots or possibly attempts to embed malicious code, idk.
Here's a list of users I've found so far:
https://github.com/diotoborg
https://github.com/patrtorg
https://github.com/taktikorg
https://github.com/npmtuanmap
I see some users have been removed from GitHub but the npm packages remain. npm should be contacted when GitHub removes users so that their attached packages can be removed too.
Be careful out there.
Beta Was this translation helpful? Give feedback.
All reactions