MAL-2025-74118 Malicious code in lina-enting75-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c36fb89acf523a533fd2c0a9818cde21881cd183038453c45a7483b66734718c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66725 Malicious code in alive-harlequin-kingfisher (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f69e53c7dd84c99ab8c1994c0c6f5b75352b49fa75c583294a1353cea1d8ebb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66873 Malicious code in attractive-violet-salamander (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa5310dc84651e474da95552a9bce3efb22b3b5131de8404c8bdcc534b9204d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69301 Malicious code in marine-blue-flea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1f3480b7a1673ec8ac747b5ef3b6c7f2e708648e82e25434b68e7d07fe30b2c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in striking-purple-egret (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ca03b8b90ac16657270f2dfb7a7c069c7a164d8f8b54e77bf59d9e8dc084865 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in frequent-azure-swallow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9af895f70ab74eedfecca5a093ca44819913ff12989c7818872d1741a1f35948 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71305 Malicious code in unique-scarlet-unicorn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05b52686bc2cc58b2041cb189586b905ec8be83ea7a046e99e0740f7889a9776 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in specified-beige-trout (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 855532255c4a0928ee0bec8744685be14e600e7c7b0db99bde26455813544346 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in satisfied-rose-panther (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f5d644e3d58ce9e42c5779266e2bfd7d4a037c943fd841ef2e8c85678c61543 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in quiet-silver-goat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e857e75436012cd93ae040b6b7d28b0519a8635530c9d5578b7be6cd23ea2f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in boiling-rose-felidae (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4498da734a7f8037fd72d392c1692a1645643af23b5b4389028476e43a63ba1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in plain-amber-horse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b871cf67ec2c5bc45b9d63602092fbdf443082c0888bddc31a40dd23c3272527 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in joni-gandul56-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 258148cf692f605c3de525cd29181f703261a72087ca077e0f4d63d0b95ac746 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yanti-rawon65-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f8ea91b4d86ce012affa707de796253464b479abce17c15c1577fa374d47efe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ade-menjes73-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7ec3d9058b434dd851a9a79b72d3eb2711c0c43f386491f42a4f6ca7f54ad1d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in andi-nasipecel65-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77bb10e4a15a5a99201d8c3ad70c92a851b4b66fd3021791be17d862a2383bc0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-64437 Malicious code in nadia-wajit88-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 344aede21c54cba2741ebd093731350b2c7ec280a01bebb5130e9a2fb5f67ca1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fauzi-mangut92-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70c172a6eeae33278a8cf2278349b14599e29b587953b944919eb63cfdcf7ade This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-65692 Malicious code in tuti-nasi78-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8eae939a6a95374d0b4910806638c53e72d5477e77f5e50fb271cec13133335f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-61851 Malicious code in alright_puma_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01b1861fedfeacff81bd60060695357cc78e9f211df06110e381b5d6f07a9481 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...