MAL-2025-68078 Malicious code in essential-coral-ocelot (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0750ff917e95d976d044ee0850289b332a7449f3d605c39aa56ce1688c885c0e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66991 Malicious code in blind-gold-wombat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fc3804c4d05ad0d245ede6a1c768c10781d5196ffc2786b4422d2dd98ed60a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67959 Malicious code in elaborate-green-tyrannosaurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d3d615271089f87b40b745cc0a9d7104daef9653605a2cd5b1eed8691aeb284 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66800 Malicious code in anxious-moccasin-cat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d8e549d9189ddec050f333731458c51f66faf37fc1b70d521cc0742c68e629a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68867 Malicious code in individual-cyan-kiwi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3254928a97f74e1c0cb5c402a5c1ebb2b700228cee8b97f5d504749684cb7a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69799 Malicious code in overwhelming-chocolate-hornet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bd569c06bdcb96fc2ddb9d63677ea1b92ad46942386b3dfbf80799b1dc9397d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68600 Malicious code in growing-amethyst-kite (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4b32f81b2c88badac94059bce3ea85f0179bbe056142194d9d1544ac82e9c65 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67146 Malicious code in characteristic-black-porcupine (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2b32c6a3f358c4252a5fcb7523371d25da02c59293169cc3411d8243df525ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68306 Malicious code in feminist-blue-lynx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3c312875fd2feac445324e9a2be83a027eadca1eea1c46e5225c00e1268ec5a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67666 Malicious code in defeated-red-carp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ec559c87f69512c047fcd2c9e41f52998d90244b1a880b539cce945ddf4a193 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67099 Malicious code in busy-bronze-condor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 319d48c23d38d49cb229c8b2b17016be121d4c0add9ce422e41fa9d13226b7c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69867 Malicious code in perfect-turquoise-marten (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54af203856ccfef821830dfff5d983f48dfba299f62d5c9b06a980ca3c1f20f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70632 Malicious code in similar-yellow-vicuna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f4bf0a87df8bc1c2ea1c9ba4bf8ffa48b0a9908d08a6f4dc5421cdd3cf6e10a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70593 Malicious code in shivering-indigo-tick (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 407562a34aa3368b056bbad81573dcd1d6e934681b4e4a5faefbed3384044051 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70335 Malicious code in required-azure-possum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e5770ca3e2f6346ea16e82c0218a69932c3fe4d26a7e8597e9f29af33d373e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69010 Malicious code in jittery-violet-bat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 873089d676c3fe0bfd28eed742aa883e61e26b5d112c57843fcf87ca72091fd8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71009 Malicious code in suspicious-turquoise-puffin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04cec611523826f66523029f1c2be99999437bafa5b33ed3d86c6694342a759c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68105 Malicious code in eventual-olive-rodent (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35a4d5b01a424b4771e5084ef2c8b94776861088c9c804c3282a5ac2aedcb506 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71604 Malicious code in wispy-brown-ostrich (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65f893c3972aa0d3b8e803417940b528f11557b66214b86203d5e18aee225e55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69535 Malicious code in nasty-apricot-koi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b1e83f29d8f3a617ccdaaa4bf0dad5e6757c6bb2b5ecc3872b4e0007f707d0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...