MAL-2025-108891 Malicious code in social_mule-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eaf692dfb1b6c534ab3b39ebe4ae5a58b5f1867dd98ee9453507931b099f21c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in broken_crocodile-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abcc9e58630b5c14fd145c5572bca038098a123791e324700ee9b568fdab4dd6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in little_gull-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e19f8545e199b4bbf351320a5bf4241a8a3958a5dd4300533c939788a8eac7b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105369 Malicious code in lsoiqi-devapptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d87798c0fbe9c3c624f08ef9dc030194626fce84315f2d84e82e4159aa9d5aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109250 Malicious code in subtle_squid-gooddev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d9df9a567628ec34313082ee72c83ad136200c823616d9b1531c23b62aabfd7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in welcome_mammal-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad8c52ac1465aaf930b7996fba5b8ff8eecb88864ef39ad704f74fffec3f04b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in burrito-notthedevs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f17a38ed4925463fb0fb536a3177c07021a5a208e0f595448073c64eb8dad24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in selected_lion-notthedev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 534b6c70e814f88ebb124b15663b9abfd718aa33c770cfabc2ca4ec5263696fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sad_octopus-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1fa36d23003d827413eecd4bc8e7ed02ad514d89c8526bd96e447eb5e38a399 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108452 Malicious code in seblakkuah15 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 44c14bd83430162cf82a7cd3247c9075e54fbe6b49403c29567a63c3f46282ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110638 Malicious code in vulnerable_goat-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 525ef5813db54e8dde6c5af933542000f9863f8625ab61438bb6a94b2b15306a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-100083 Malicious code in brave_booby-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d1afd2e04705548b79b3516eda579e04bd49f9d54fac21a43ca78ff2450e3b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109169 Malicious code in straightforward_butterfly-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 489fe7ba59a03e75d4703c48c1070a760a5abe150be94e44b78e07bed0137ec8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in urban_leech-gooddev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0dc80c4f4e86e1fc1ed861c288b907aefd75e3372da27c68f4002aff6135a91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gardukereta-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2fa28406c716389f88c6c63ae62a4f292e75109e1d2b6c8228253d5e22ef67b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102960 Malicious code in full_pig-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1cf6a85d09f4faba00f460add459a15f069c81b844650536e9ef2ae9ca97b63 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-106732 Malicious code in only_kangaroo-notthedev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f17724f3a9399641dca22d3234045ed1f7aba815b244c0f9aa9677a06318f900 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105146 Malicious code in lilnelis-notthedevs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69744561021b334cabbb33b8b3a3f90f101bca3289ec82685260b68111c6e6bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108645 Malicious code in shrill_piranha_turquoise-97 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8feba89a8dd565c0e046235ad90f484b101019a84adfc809f8d6cf8775d66aca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107628 Malicious code in quaint_snail_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0532b907c9e0626738d9ef4cd3f70873b956d60592dc408f56feb9f519efe6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...