MAL-2025-117289 Malicious code in surya-nasisayur84-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc2a61e270050702db0ac95efea7ab6b28e92aab354f831bc1a61c85b6cd8a61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-113543 Malicious code in eka-sasag32-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2867888502fc81fa2e69c5270af60936cf21e2fa035835f6aaabcba6a1d0365d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-112853 Malicious code in bayu-wajit38-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54e6d51f7be6deb4a3541d0b92848328c0683c865b2ed1a70b7df473a58cb71c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-117842 Malicious code in vida-jengkol78-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0a3b7685e6359b583b45fbd7b3286908723209293213144caf03c3a99d58491 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-115051 Malicious code in joko-ragi82-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8d3df33d1e51ae7c05a50e6f6fb9d341fca0954894b632dd9b2b73e0a24e91a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-117879 Malicious code in vida-tiwul28-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fff8a6e20fbbac815038b29560a75e3904be7366910e22aa4f8b9647ac9aeab5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in apparent_owl_green-100 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 940046ad11f82db072ee663d355feb9a47eb7ad25fcadcb2bbb53c1cab882d0e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in friendly_koala_orange-99 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60d11cf6bbd94c0329bb007d7f4d796b1e2d4b76197a1676fc359da49afa1d50 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in original_orca_silver-60 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 22f87f761817666aade352edb45ac8e30fdc6baa6249be42c7579afc1337e88a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vicious_ape_aquamarine-93 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9aa9041f185d1b2bc827305eb9b8878554964c927f46f25ce188b63965d50db9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-112188 Malicious code in pleasant_salmon_amethyst-25 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2736aa46a762ab71748f8c4933ab008e609b630d53ee9873afd893a57b27fd1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111740 Malicious code in communist_goat_teal-24 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffa95b2fcc03614d9d2de030e661479fba6319f913e26a945dbc78995cca4555 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-112079 Malicious code in managerial_squirrel_olive-93 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65e95dfac9e1c303bbad2947faf75fcc099761b66d70f93780fb7c02a97af9a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111701 Malicious code in brainy_ladybug_plum-35 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0fe5dae712d3bf26888aae3c812ca5426c1a35b7eb290a7d8e2524d4ef2bbc24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in little_gull-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e19f8545e199b4bbf351320a5bf4241a8a3958a5dd4300533c939788a8eac7b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in urban_leech-gooddev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0dc80c4f4e86e1fc1ed861c288b907aefd75e3372da27c68f4002aff6135a91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ujjfzs-devapptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f818ae4f5720e4181a41d302d556dac4bfa23f1ba57d454f84704273038b5fb6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in academic_bear-apptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4fbea7dcb8087a54d89f3a23143447e3b2a176d772def5fc9abe48d0d70e620 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in agreed_ferret-strongdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7568fb5b6a21c1505290c92c8cb5bff480ca4f626f42de58442f36db9d71051 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in broken_crocodile-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abcc9e58630b5c14fd145c5572bca038098a123791e324700ee9b568fdab4dd6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...