MAL-2025-133578 Malicious code in foolish_tarsier_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 541b17659fe576eec62577335d62437af8fff99deb804ba5da761d14aa3785bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in grumpy_goldfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1dd466a447c5ca9a6b61d5949701f4f1cb2cc5797c379e8a6f052884db73ab7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in promising_manatee_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53dbc93254c063eafad4e8b154fdde43c97396cf593a6c77243d3e806cd25166 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tender_squid_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac4e0e904ec2fb3b39896c53a6a9da6b0f843208b57272a4c3abfa5c592e71b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-119611 Malicious code in dynamic_fowl_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16aed3d6469474734006baf2c99bf43340bf0caaf316b67850913cd88ca5cd93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in environmental_starfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f214c96db1097535cde7188fd70683c6ec8213fbefa765e7b2e9787aad52aa6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in creative_anglerfish_brown-2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5964f73b416e0c23f7895847220fb2fbd4276ebb2a8e2f2950894b65a67347af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in retired_squirrel_amaranth-28 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ce3580ae36049521695ef8ec4f04101785a02423072218f26e06555a3596059 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in grubby_cougar-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36ffd90aff747bf7baabf913f7e3a171bdb22295b2e993ca354dc8f13028a44f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99958 Malicious code in bewildered_pike-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66cbea3cd4f8edb76b2d2b32d17ae4e56c3d268d65dcbfbac43ed78418b49533 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ok_goat_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd904664c7f26aaf8b8b686105d339b3f2691fe027ab3ed406c2ebe84d4729c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110824 Malicious code in whispering_bison_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1dc47b3b59120bf8b12aa47955dc8351d1000677f60c17d34bcaf3d446abcd34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108512 Malicious code in selective_dolphin_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b104839dbc2ba2d0ff8a1c8d18f0d67ce22e8c98ccaa9a7669338f3da7436565 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in correct_galliform_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d4b4b75421b2324b7e08720e9ad5db0fc483fa2762269a4113d34e0a0aced16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in elaborate_silkworm_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de3bae92301df2a81ea0f6b380fbae002f6a5cc4e859239a76151bdec3a3795a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wasteful_pike_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fadb125bd22137aef9a53d09dc8d6b0dc8fad2bdd359abea4c5cd9ed697d7252 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in colonial_butterfly_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91f5955786a49f437b35f1c0a51341a2d4a89aadcc8a15ae321e9800e3191c5a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in living_dingo_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a150eef70db16248f660cbef42a5d8fab1c9a0a5bd66dcbff450aca2372cf74c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in required_falcon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53cdf102c6e58172d5717b0f71ba11d1070d659ddb457da21908fc3e18301904 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in successive_turkey_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a9a63e787c73c900c20d13ea6a9cba80186e1d46f403308ec3b68dec4d8c530 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...