MAL-2025-70310 Malicious code in reluctant-tan-cattle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02768afa5e2f08cd7e71cc2902cd0a3439509e037963d7c6832a02f8c863198f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67031 Malicious code in boring-coral-ant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4a6627686f131b3f859b422f1c842cbad7d2ba637fc9b6c34b91ba057a50e2c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66817 Malicious code in applicable-plum-cicada (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ac83677b829a48b2eea56dc83c8234539fe8cb2c5de8cc8e6c1f606ec8496f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70047 Malicious code in progressive-apricot-clam (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b2a0913145f1a2e86c5162f180bec4e8f15645b1d251446b6e3c418bb8d4108 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70289 Malicious code in reliable-lavender-dormouse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector beb3e8bc6ae437d4fe308792a18786bf81c3bc5d60d2d7a2c9037602a787277a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68740 Malicious code in hungry-teal-rabbit (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b97e8a3127ce33d1d37a1c5f670c99bf2eb271f4010db8596ac2c46d23888df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68565 Malicious code in gothic-aquamarine-snail (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b0b313d0ffc1eb6900a80f71a4af5586a4e74e6d7530e47c50936f17314e221 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69631 Malicious code in normal-plum-fish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6450bd4acbcd9bf78f4d6ace5062b53d0b5dce3e7013e7460591b14e060ac849 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67555 Malicious code in crooked-white-xerinae (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dc13f36b4814694e66b21e2c5081a97fd69395c9fa373ea750bb96432c2968d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68000 Malicious code in eligible-bronze-quokka (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 387c6bbcec344d246523eb5045a18982753d70cfdf226e3968e099dd54f66383 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70353 Malicious code in residential-silver-panda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85078a4c300ca03a9f342f762ddcf893875b316c76d5a5562ea4d2b18e6ddd93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68916 Malicious code in institutional-plum-hedgehog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f36cff742935a25e793164b1dc8ff5cfd7238f838b48b82d4b5e174f502a36cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70828 Malicious code in statistical-apricot-impala (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5133c5bb69dc10a8aa2b7d668fcda798940998a442ee7d6d8d9748b2eef32cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67989 Malicious code in electrical-gold-wildebeest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbf90a227c2a8580abf1cdb50653fc11cd53371d7237c1ef6d9fa3e76ddb5322 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68910 Malicious code in inquisitive-coral-swan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91be5abd2cf841a896ec9f58b209ebc1c89202982c109684f33963f2579e70fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66960 Malicious code in big-amber-earthworm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c6d0edf6126a0426cbdd9428c728cbee561fcc5f789245646a332dcb81c0bd0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66860 Malicious code in assistant-apricot-frog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de5fc63df923997f2b03329dd326e59736473c52fa07ea8f5a013dc9ba0cd925 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66752 Malicious code in alternative-bronze-anteater (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bd2ca2020aeeadec53075e25941147011b971d75a6989c25459ef63f7f9cca9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70763 Malicious code in spicy-aquamarine-guanaco (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf609eb7f5e1dc8326629d6d2301bc431965fd167226265c1e5d46e9ad136bfd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68365 Malicious code in fluffy-purple-coyote (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ddad31e43e3421d51fe647897902d78cdebb744104f2cc4f9b48628c9b52a006 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...