MAL-2025-67741 Malicious code in developed-amethyst-grouse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52b1cccc4e10dc3fe415a27aa22285a79ddccb3a1868f2de2b66e2844cb4ea40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67932 Malicious code in economic-blush-woodpecker (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 699c136b75355a828f2c5cebd7e064c53de7f25c0f3cffdc33e4ff9ade4ebf45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69714 Malicious code in olympic-green-guineafowl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de6f9244db234f16daa11d564c4d76bc34f56c4984e7bf29fff5a6e380496ad3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69601 Malicious code in nervous-jade-landfowl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 739c835057b75a86b0b53838c1436c0f42cd0583081c129c364915a9352ce7c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71746 Malicious code in youthful-silver-landfowl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 616b9cb04877cc547ac0f6832ae1477771155334a52e967b3db062cecc118b21 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67983 Malicious code in electric-orange-whippet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dce79f878b79da99d42959702b1a0bf499ed8f90f918bb6195d1557f3dac936 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67118 Malicious code in casual-coffee-cephalopod (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33a7b2bdbe1609b297c3b2001fab719b990a21c786a4cbc1b20e57aff9830a79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68348 Malicious code in fixed-amethyst-canidae (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81f1bf92c3027d74632b1d1eb659fba82e6c3a8f815d9ee9262eab62a077219a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67793 Malicious code in distinct-purple-ladybug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5040f0633f5b60c6cddbdebf976bcc6c8ad99f12554b255398caf6625b5d0d69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68050 Malicious code in entire-tan-ermine (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72e26056ea9cca3232862634784088f1867cdb87aef6ab6dfff0d4e4cba58427 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69971 Malicious code in preferred-brown-spider (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8535d9a5cabc2038667a723f22807654c370f2c1b0b70b7fce54dbc945c68f11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69050 Malicious code in kind-orange-cattle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21dfa396aee0f96c408ef0b25d13b4931192bcaef8908d5c06c1b8954d8e66b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69468 Malicious code in molecular-cyan-coyote (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 887acad8a96536df262fd7f8e14b644c8b7e09db984fa16467361682d8d46e6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70313 Malicious code in remaining-cyan-kiwi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87895d93af91085c3d8940ca4c9cf5771d7a8dec672aafa47b2ab431be0f58df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67867 Malicious code in dreadful-yellow-dragon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da962d3c8f84ba3f18426560c437a9af13176d4eaa7cfba9e7daf71d35c648f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69210 Malicious code in long-yellow-cat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4380fdc0c59b0e6ec9eed42a7fa12eb2228be72f34ac94de3e169d650af7df05 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70960 Malicious code in superb-scarlet-vicuna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad566814aa021757db165bb5d59567e4e35502b0942ce1e0b9a5e5f9610a90d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71508 Malicious code in vulnerable-cyan-tarantula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dde09e4f2658c23d35c555d91b777541f2c6a963bc2d9ba3d496c6d004c5924f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67782 Malicious code in disastrous-rose-ferret (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b23b8dedb85f002c2bb2aec627314c41a8d7d6cdacf915aa6d60f94b13220adc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71745 Malicious code in youthful-lavender-aardvark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 215abfbd9e7c9b5722efe7a6124a888e872b57e12622ed5161132fef8f2f3980 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...