MAL-2025-101743 Malicious code in doubtful_gayal-excellentdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b18715632d0078312929206ef7bd0633de6b81375822e3b652c1d73405b66f67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107135 Malicious code in pomegranate-notthedevs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c9626bc401b942c8814ba3b920f1eb300ec76318d7ab845fbda660bd05be931 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99061 Malicious code in academic_mandrill-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9aaba5eb1327b851f30f02a0d61a6833aca93c6f445552232d67e9d347794ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105332 Malicious code in loud_haddock-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0428a02b6ff76a5f55d34591776315055430fa128a248e7af7f560a6e132fe9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105436 Malicious code in lydtol-devapptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1caa2ed81367bb4402d8d033924b55a1f1edeca17b67b8799eac3323c6c9309f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105257 Malicious code in literary_eagle-notthedev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d8fc5f394ab8db5f17ab1629d28ab0bfaa8280b4b7df7a109e2e383fb597886 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111355 Malicious code in yucky_dolphin-strongdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd3841cf6475701654aa7b508fcb0918326d1406585a05e0c1789dc5c9dd8d34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108001 Malicious code in revolutionary_starfish-notthedev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64e980a83d58f651ed6ae0c0cff38feb41ac4b5c7ddb2469eb3316b4b5c2c401 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109946 Malicious code in ufqjro-devapptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47356b881a8739b28a890728b26b0e06e8d3beba934a5b1f5acfdfd5a6a30e35 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102070 Malicious code in empirical_hummingbird-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff5bcecbc66bf50eab70ebe6ac88e27a2ba83b32a97db59e604e7972e6776293 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105646 Malicious code in marxist_sturgeon-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5744873204580592871c4fe41b504defe00fbc009c7cda54cd08c3b52fa0f210 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105611 Malicious code in marginal_flyingfish-toolteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4750ef1aeeaf8bacdd04fff5d2e04d55a652ba88959a48d038aba218b12110a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102580 Malicious code in fashionable_salmon-toolteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74f113cfde4b4150ec3b35ccbf4cbd74152873dd7d858afec982a736a0a9d909 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111121 Malicious code in xeric_swallow-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04734418129c6bb758e33c147c4d1e55dec10ad66a5c047fbd1fe4c057d4a7fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-100789 Malicious code in complicated_rhinoceros-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb0618af781330fd9f31ed5b65d43162bd09945b95335bdd144baca13234a011 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-106354 Malicious code in nlpuud-devapptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac25e32cc7b9c2e39fdf16ddcd3ae385b72a4aea7d31ff1f7d7bd0e48e8c7c60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-101357 Malicious code in depressed_mouse-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e93661f6ab4a1d3f7ae647580f55c70dfd3edfb722a7fcdc042f5649174b492b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-103073 Malicious code in gcrcsr-devapptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93ea6a7f29b8bb81ab73a8728c4864bd0570ec35f18bfbe6ca28e3f211ce5e9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108979 Malicious code in spatial_manatee-gooddev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1039c8d6592e39c06cc2a2f453064c130947dc82a921bf501dc2b2e74e0c2b13 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110767 Malicious code in weak_swordfish-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39c408d57fd55564e82507811c08b67eea326da0242c36de81e9a9c30e2a2878 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...