MAL-2025-103817 Malicious code in howell-wallet-store (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f26e6d08034437211741e93677ad983a4da48e59160ce55d13e45f2fcceb885 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109964 Malicious code in ultimate_boa_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a256bb0b9ec4ee9dc3cd44a606f2318dc790f09a85b3f4e2126a9872b14a83fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99803 Malicious code in bare_locust_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55b63ec7b65e464a0b1559279c070cf17c5d06d2c02a412a841e00fcd92ad947 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99245 Malicious code in aggregate_rat_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f7fb401b0c704efd4634e9a2130ba049eda7b568bb369707f67d615ec5287cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-104198 Malicious code in inherent_possum_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23cc6f9fdeb82292e758e0e7c63d6531c582469872110ea2c350182bee66dc60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-104532 Malicious code in jealous_aphid_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f430fa2f390b47b820fe71e90aa10ffff529d2cbd8a7bbd634ccafe6b191b8ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111038 Malicious code in written_parrotfish_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 310605c3b67dd67f96d1378b349dc9557ba1ac711c3f43d767c32102c54f4b25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-103403 Malicious code in grotesque_octopus_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b04a1e9892a84e13553a9007ca1458e86d48ca7a9b47607c886a345b5a7b524 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-104490 Malicious code in jacinto-teadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac54aabe8e0b85d448cd3d990d4e9d95041afab65bd45567f681635ac4ac062c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102278 Malicious code in everyday_boar_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6299b253cc8080364a034c221a6b2101fb12564a44df40da7ca9397d5e56b749 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102119 Malicious code in enthusiastic_piranha_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ebb62b401a867d0e088995a95c088cd0132229fa0de0f3e5f3a9eb1a0c90fa2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in acute_caterpillar_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63d0a9583e93402c82b8c19233bd18862ec2c80d7a8062688d3bff2986146012 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fauzi-serimuka79-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b26b9a28e96024fd764ee71d904d5195a0b615de8c75b3fc2bc02d765457c475 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in changing_wildcat_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03c64287c4545c406e67013f35aa59a7579ab6d15435325f4ff1513bb2f37d22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nina-ikan10-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4742b69045c5ec46294fa57dc06680ca8e2be1d28bca84fc25f6cbda5582a26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in skinny_mule_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c64e82c613a50041c3fe79cd8bfcd6370f5d92529bfbf32eba2ddb86f6183e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yearning_hippopotamus_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fc4cc67d81b95211a117d3d56474690464b0d1567c5dcd51f2c8541d154bd34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cindy-rangginang25-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ed1f3cb6288b859ff982d8aac804a61ca3deae929d711aa3ae6a4e4eab8e6a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in citra-kemplang89-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ecc6671ac37d2601a1ad306c3994ce32dc5570f7ebb33893737de1769001b66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dewanto-kue42-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf27f4b53f7de949862e630948c0154bc9ce4edda08b7ea9dd514387741efa9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...