MAL-2025-108492 Malicious code in secure_albatross-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7029ed00173e5ecbc28e1d58e9b47bf523f8c4d829f895cafcb661f9215f99dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-106293 Malicious code in nfpiah-devapptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b6364b4bbacbc933c2256c72258e25fb5af909fb3c07d0aaaee5a74f4060244 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99814 Malicious code in bawiwn-devapptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dada283d2a00c3b0d45cfa2bd4e2401c213c52e5f45fb8474ce2d8513acc0c81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110171 Malicious code in unpleasant_crane-biggestdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3080abb95677c2f2a3da7939194863e7ea331fdc7b4d816ab66c2810497f3b48 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107248 Malicious code in previous_quokka-gooddev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 293bc888c42ce59c4c84449f6e5d9113cb62d1b8ad60d7d61f9bc47d85811235 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110227 Malicious code in urban_crayfish-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96a110f635b769e91fdbf785888354f84ae408eaf237f9391320d55c3236a4b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109965 Malicious code in ultimate_crawdad-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bcea628ea409e46815eb4ff96e7ca73104b1d8759b21d8b59eb5b72b88c13f34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99985 Malicious code in biological_xerinae-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37a838841b1f6e2f1202ec26084b7df541dc97f3484e835f16aa3f66f6c61c0f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111550 Malicious code in zestful_swordfish-biggestdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8321a931f1e1507c610b936feb05c83a38bc04bd45e6ab9ddd4eb8262ece7408 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102374 Malicious code in expensive_roundworm-gooddev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e40d4dd59ce6497e1ae95a347a9cfa40f8e9767ef3e36cf87cfec7f6b1d877a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108806 Malicious code in sleepy_kiwi-apptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b033d640c89638d58f08e044927d44c7078fc57668f828604a9e92a566457811 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109269 Malicious code in sudden_cow-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37170afb43af219a73f2e93586c1320fee2c69549b380db4f43060a2e2fb63e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-104541 Malicious code in jealous_rooster-teagooddev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aad96bbb5efa066290b226586c0a6656645f6364c2a75c01704f243f076330bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in near_antlion_blue-86 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97e08fb65ff27919834cd6102a952602ceb31727745b9ff281b422fc005d8e07 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in junior_finch_peach-60 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 442a587228c5e5a14c0fe7f8b1373444397ca49dd5f9bb82f56d0681fbe75c42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in holy_crane_magenta-79 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2dba140b3a88f7277900b6fbdb053e653ad5529aca1c45a4d0fb0956efd7f83d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105865 Malicious code in minor_felidae_coffee-41 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a01edf65848f11bf33bb396a670462a8b1ecc9617ceab0f21b664417ac64bc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109574 Malicious code in testy_starfish_sapphire-49 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfb49274bfeb9bb9ff2485eac1577a8f97ba458c82b3a77b280190434610b8ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99633 Malicious code in asleep_ferret_blue-6 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13bff7397826957fa49cb5750d11fe86dedab10daed7c5aba3238ce7d7097624 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-104301 Malicious code in intelligent_platypus_blush-59 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 938e3004399bfaef250895433e4b70b09665d06aa30e2acdc5226b8c6f515f68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...