MAL-2025-110326 Malicious code in valid_unicorn_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdd3673210c6e4e7ab413250ea0fc9de96e49cd9ea801c430d04b83d750eb0fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in regional_wildcat_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a20b19c65c705ea72b3a114d660c4f0be060ef1f4df343d7c62be07f9eadc06a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in coherent_wombat_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42826b9732962043bb19a4a2b2032deefe02d1c54ef91548f5ae20bd76593b16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in homeless_marten_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 558e8afc0ae46cc33203528951dca4672c295ffc44c88c54a79453110c6af4f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in additional_ocelot_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3aacb1af59c2358e1e34ac2080b77f059d5c030aaa3c1170fce2cd8699e5e24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in awake_jaguar_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9cd5acccc71d532ae4fd9674e56d1ac6273b6da63103c002eaa76b64999df5e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in complicated_boar_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5233ac707e3f6f9071f2d601a18a91a1ffcb73ccc120c5dbc0fd392933bbc394 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in conservative_slug_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce496bc94e2ad470055b4419fafd3ecaa09ec9456ea02d6e78108d6b3f36d838 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in delicious_cuckoo_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78a6ec5ac4a3b74461a4ed67afe4e03e0bbd9265b7fc693f4c821ee4425eac7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in glorious_camel_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbf0eda50412221eed8525a2deb5ff1c99857deb1de6cf2dd6bc52f0f2f0c199 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in integral_mollusk_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f40b34594c7b354ae39a970e22ed7d919407accf76645be54e5d9e63ad8111e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in native_leopard_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bcd81949efbc94eb4ad5de8b65fcb976f0791040a0eba6f1530667dad76302c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in near_tarantula_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76b95692c0bca821d84f5fd054440dc190b881ba74c14972aca76005e20d3268 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in obnoxious_parakeet_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c85fdf903f82d6d40657c4408b025fbfe3e0813349d42303a20d43645c5279e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in potential_minnow_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d90da7efbbb307ccf07259f01b932c69f4d8d26133edc7db2bd3e2d8ac03c43f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in private_mite_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fba44d7d2d2f0def5c668db2af0b28f4b8109c6e583d02a21f785268ad879ddf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rising_mole_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c123b99166eb60858e47d7fe988799de4a3972de4ad968f5ebf86b80d6bb322c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in satisfied_skunk_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0010c90660908c655294589e9fd7c449fac1d71cff575b18bcadb3b29ea4e2e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in scared_camel_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d20bdc1a3620b5ce97d14ac2c9224a02ea183a5377dba9494b757f72af4b5fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in spare_mandrill_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7f597965d2453c5c1c24d68de3efd23a662a8af5acba3f7f1237fdf32582fe8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...