MAL-2025-165321 Malicious code in sabua-muhaffi-nyfa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2ba1e5847d002d1c9a7f6d3c21c31702480e6557ee0e62f857248613e9922aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-167215 Malicious code in teagood-nakama5 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a73f4e68c9e43bbb6584195c93780230cba2685450c6804fe926c279fd6ac910 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-160942 Malicious code in munir-terd-tsun (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 586068c849d7cdc09cac8e60726a1cd9d468bf1307aa6af3afa37db36c19746b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-151465 Malicious code in abiuba-avimun-abatp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b884f65a1b50fc1f9f11b7e117f059c0bdc49829cfb6a3659adb7543f7c9736 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-155987 Malicious code in icha-101 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20183fac91c7dd314ad351b599486fb0aff2040e11e58a67da3de9342c4dd6da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-158565 Malicious code in lookingan-namakiki53 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 733858fe9406bcf43126c5eb872456b9a95152184300be9de4ead29d09c8341c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-159503 Malicious code in manaf-asi-mantdddap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05905efea429aa37ca997bcfedf13c70f767cc052f9adcf04255312a43b721f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-161609 Malicious code in nabuf-otoimn-aiagfgi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da302d8156d22ba880dfaf66a3f205c52f23e6a735c5cdecfe4c13b2209e38b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-159311 Malicious code in manadi-scaior-daraeda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de57f48d208a811cb0aa79826b3021ec36ad1f6534ac7a24d049306fc777b58b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-151063 Malicious code in abang-poke17 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1771a00d8395cea802460df4c23754fbf7a260673133f3d950d8733e8f5f8e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-157320 Malicious code in kamasada-nusata-bujb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e649cd1f3e13d41d568f1156e0a41a71036f0cb0b092460b871f115dfa8c0441 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-158675 Malicious code in lookingan-namakita62 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11ed1c8316b68e72aa26895c6201cbae3e15557c236cc97651c4410d32138d53 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-152689 Malicious code in angin-poke32 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4ef2fda2b44d1c6484383d40ebf90a36bf011e4843d1c752f9006e9a9eadf4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142430 Malicious code in favourite-coffee-stork (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b9ca0e2b4bc589d1779f36ab439cb7a963d9e4ffdccc1e2402235e183ddd9f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yakutsk-wasat-astro-auth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b08c20be557c34929f5df6c7e5cfcceb8b208ffe3d9dfaaf04557cee7aae0a1d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dagda-callisto-dagda-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc82ec03ffd02c6d92be3630990e05d6201d5309e55677a59e7817f7299c2815 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dactyl-native-superagent-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9399d903b38766a58790ac43991a2e3704dcf083ce309f85ffdf08a9046286c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cygnus-heka-mensa-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42240a0951e6d568b6eb3c3c4ad953f7fbbfc1af556e22fa93ff5531099adbc5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wolf-nuxtjs-mira-spica (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be3258b064bb655bb212c29f171951d33033c240d6fe5dd0b0bc92e9898d2678 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eslint-config-cygnus-iota-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b87ad769ec5476d02c6dbeed46e43ec25e7454715b7d55eeb428f0505d2483b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...