MAL-2025-67645 Malicious code in decent-chocolate-finch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c0fec97b6603182d5bb6b2ed5d0094bb25bbf636b4fd166eb45751ac8aed98a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71735 Malicious code in yodelling-sapphire-magpie (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40f4e1e23bed17ae8fde64589de97aece70615f7c890851e724f6bf5ff522af9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71138 Malicious code in tight-ivory-boa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b667714801dbd50a93162fdcc91eb405474a4a7dcded20178ceb63c415a896e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70960 Malicious code in superb-scarlet-vicuna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad566814aa021757db165bb5d59567e4e35502b0942ce1e0b9a5e5f9610a90d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70630 Malicious code in similar-pink-owl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0247910e7de4ba623d867d1ffb121e5d129de62d2b3ff4412803a083e2a801bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70966 Malicious code in supporting-sapphire-leech (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2d43f3f3fb0d892fb17d9c1d2b876a2fa0bf69452857935624d8a2727b8b100 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70555 Malicious code in shaggy-gold-bee (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84c27fd20786e557024a8e871bad40f601a40e7c6c09ac823efe36308295988d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67087 Malicious code in bumpy-maroon-manatee (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb2c1b1fe29ff898d9b17478a847a6f1e446e445cb30df8e02620efd17e7c9bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dono-nasipecel35-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47449ee8eb52adabf2ff752bcfc4890859b038345c44ef3049ed8d690f1278e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in umi-saguer14-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85a7642039eec9ac83001192fe2e38471b29f04793471f7a3338e59bb9ff5f19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in utomo-ubi2-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b67c153cb3928bf20064421b37f54e7afec283cd2be8f5612a0a2bc5a5f7e489 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in organisational_cicada_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9959e38113f772211dd5b3b902d9b51438a731c4e19d047bfc244c5530ebb611 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in operational_mite_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c0b5937f82471023d32d312ebbb76ef201a1a241165b144dfbdaa129f1b2de3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-63982 Malicious code in laila-soto71-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4dac25dae75a745792f54d61ec011d46ff9877007652e7b1bcc38c590d7e76c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-65888 Malicious code in vera-kemplang1-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b75fa4870974cc84aaf515098c2e9ac938a4a3000d3236cbb63ddbcf4a9bad5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-64169 Malicious code in mahesa-gado-gado50-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 562ee00106fcc7d31ca6f7ea02c40eef94b546949bbfedf677704cc611342297 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yanti-bubur43-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b0731ec9e83434ac43c0150112e86d1e33b001dd1cc781b75b742a8e7a01ddd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zaki-klanting15-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2554a73496da9ef2d7c373c59c8171eeafb47b8079c2aec92ef49299fb15986 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tomi-klanting91-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 540663dcbdcd67f948296f9dc1d30464e6afc976b77116d81d81d459823d4463 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zain-tahutek95-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11f56faf76b232d5d8188b3ed823ab3453434cd9387c16db0d522595a5fcd0e7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...