MAL-2025-188268 Malicious code in nextjs-sagitta-backend-nightwatch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d30433018a5273b06b2934b8e3c126a9eacec0a1c317401dac6dd8848fadecd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in subscription-interstellarmedium-toml-neuromorphic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94870bef41024d316470dd53ab7a4f20aa757f5e14a2b389f9389b45f02c0f32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zeta-permission-beta-short-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 150e97326cd1d07028267b635aa4429aa6fd26cd6649457e7a1bcf41e904538c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189311 Malicious code in sagitta-child-process-subscription-vuetify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a9e4f79fd0c3aeb2ec025b492be6595c46a1ebd399bded942c4524796255bcf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tardigrade-indus-baryon-axios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75f2514afda20ff1f907f552513fb989fb4e0bcb04cdc483a5a11c2b968e60bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sails-europa-nextjs-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 723695676a287161e3d27b973e94d01b9c7964555c6b08d4112590252c89e581 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188503 Malicious code in paleobotany-warp-less-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e503cf1f4b68ac4105f21495630d3b3ab9fa830d3e32df743899bc45a7467430 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in poliaz-ala-yulau (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e57e94da2c6e54c48acd27d7100a627424afd1180c2a92fa3504aac92aa5c551 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in poliaoz-aiks-al (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81da736051f89a4d3735b96dcc2378b26b9b7019b61f054499882d6539a51874 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-182340 Malicious code in imodiov-kofi-cuidcavuaomnodag (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d76a3c13451bb868f4be75606bf02bb0379c97f834ad96ad380cff29c026b4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in oliobc-uyg-afuig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08ed04d0697284b09e138e0cee79429218dcee446b8ef797abe689cd1a1bf01d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avangs-olioms-nolifau (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aeb6f2c40ed02a07f77d84088323fffe11e8d0238b00be2c68e578d2c094586b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in teate-thy-py-fude (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 236d339ca510d86e9efbad0f551efafd2155b8d7cb43fc7731b0be4b832af39e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-179710 Malicious code in kisut-faig-dikanamuui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f2a77c1daf76d0ec50ea05bfdcf3bca4f68d8619345bd306a7e492689970426 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-179859 Malicious code in lookingan-jaja8 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1b94bce2e9b69fcccbfd0edd4f204a30a868fe9b65b0793edcfd15f35e0e9c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-175321 Malicious code in kapvino-sofgdi-gagofgfua (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f44bdaf19310877a3eb01f1038e0729f2ed25cd4cb1617b9da2679c3f5a1ac2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-176637 Malicious code in nuilva-bava-maba (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1431e1536b38f4177afbcc8b4b7dc07157180d524be7a119c81fde2257764e54 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in polymer-ib-sgasdi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a793869be28a6a714264f0334318f2cd5ab15910c488868adc340c32f6b07558 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-173522 Malicious code in butahu-asfauui-dufusu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d994556611f935f57372d1211079d07b14ab712c052f9a069e70cb0cd1267f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-175315 Malicious code in kapvino-sofgdani-gagofaffua (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c227c545d62be0a5874ac52a4bc44c4d53d65317b25c80e666ebb6a2e5836d72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...