Malicious code in wrankas-notthedevs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector debd5be03d6effc3914ff9797e225940fc4732a2b0061e1b75c70bdd24378b80 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in irrelevant_narwhal-apptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4bbd1a75a8d91537fd75947436ecac78464b19dd5d6280a1e526ab2be2241dd9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in harsh_cardinal-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45f82e73cbe4d6ed4d70fcf00ff387492572e8f91970c18dbb5d60dd41f737f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in democratic_sole-toolteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0914ea8ce3d933b6e76a54965a9ff608719ac33d2a6b431f326c8f9c36ece4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in external_mosquito-strongdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78bbfbd5f029bd4ca36db594ae68e5d8212ffb479ccd134997a7aa5c29cbd03f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in beneficial_cow-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e10326049360feb13dccfa1d2231d3f173aae9f2aaf516a35f2fe51e468c3c7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bright_hedgehog-excellentdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47e25d5250f70b5778474bb68fd2fa93ddda3b88eb0c2e1d28d530d1a8360b3a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in chubby_silverfish-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b66345e7f35162cb5e3442aa40a94dad5535e6a1012ad4f40d01bc4e8decf409 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in witty_ostrich-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 501902cb9cf8b8f609a72e1fef5a25bbdf9cdd558942aeb87ba522ed4e2b75a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107149 Malicious code in positive_dove-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fa1a7f84d1fbbd4f8ad86fc46028564d001229f3ce8b277a588c5d5a4482818 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99129 Malicious code in additional_worm-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 023581abc84dc091579f5219df24dfb5fb6362033da0fe9c90483df9ff41fbf8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in raw_scorpion-silentdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ddd5150e68baf2190448387a714a50aa8ffbaa86ebd5590c183f26e90f2ec2b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in thick_capybara-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63c39d29e9842b4ece8d44f8d313f52fa48b3da99952e82f13a59dfe1a9e299e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in orberos-notthedevs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49b1d5282681ca2fbd1343af5c827256875e8e27eb18cd30b12fbeec1024f277 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in combative_fish-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a5a3f0c15a19983abb299e373ae2c8c8fc15a180d0e9dbce6c66618b0baa706 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-101862 Malicious code in easy_coyote-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 731ce1dc7936edea06b0f3c733e13e9755ab2677b445b9ea3ded5beeea1a591a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in human_bird-silentdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9920d3eded7bfd256d191f92c7bc1078e37edba6e9e88433ac0dfb0f2ec19118 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in legal_quail-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3d997ed3a04676fb91c37b31bdb10a836b2847d9dde1527e2f91f9de410852a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110767 Malicious code in weak_swordfish-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39c408d57fd55564e82507811c08b67eea326da0242c36de81e9a9c30e2a2878 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in usual_lamprey-teagooddev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 587290f0d459313c33c017268c63ccb89fdb6c1edd4fda7decc1fc82d964a167 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...