MAL-2025-67684 Malicious code in definite-pink-alligator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 970c3c0e221f432bbf76ed3bac1aae55d231c1700f40c1e4bcfc8a89b3977ddc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69634 Malicious code in northern-cyan-condor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e9f4dc46303416f08d3467d9fb21fbe4feb5366a6c451d19beeadf513c44694 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69985 Malicious code in present-copper-beaver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 601cc2294f6ab4a90ae3a9b6516b2f7cff77e65ccd5369bf256fc070cdab3359 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70749 Malicious code in spatial-teal-lobster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6cf0d9f94e03bdcc10532d6b754e82e715fcf17adb663b92963884228d89625 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70535 Malicious code in sensitive-white-dragonfly (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0319e988b13fa7e95240e108d512f3c2c4cfa1bd9ed8774ed089493466962eda This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69580 Malicious code in neat-rose-silverfish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd91bda3d1da9dccfda717a63e4fe4f68a0f85518d671810e59c5a0109b65f93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67207 Malicious code in civilian-chocolate-takin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ec1167f5e94b1bfb198b44c75dc95529809fabbdddacd7308ee7a5beb5b6652 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70379 Malicious code in ridiculous-emerald-dragon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1faa21c7bc4d07179d25a4f899c3defa643b8f801569f1185721a1fcd1f08c2d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67651 Malicious code in decisive-gray-kiwi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b3d85252787a911ed784ff099f41c3f6884b92310e856ec4dbaca4d11251b4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66706 Malicious code in agreeable-indigo-cheetah (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 497d95ace813b16051e585e41a797e5808c519113a5e0760a224ea2fcb49287e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66924 Malicious code in balanced-rose-crow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d074f08c885d9b49e7ebd7a298cee46c28825eba28940ba3b4f861e8fd47aff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66644 Malicious code in additional-red-crayfish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1cedec46ce37ac2717592c0826c48e2ecdbef71ad22fadb60b6008ced07774fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70217 Malicious code in real-amaranth-cheetah (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6754fb3e9d45c6f94db2de33517e938ccaf2f2088d79a0fc59d114e5985b3a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69477 Malicious code in monthly-emerald-scallop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fd842fe6b3fd1216a8a16c2f1a4c1b37a51d3fdb841ad93928b4f4c73372c7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68046 Malicious code in enthusiastic-salmon-stingray (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84c264ff8352ce4a661f0c8f9b9ac0965f65b8f0684ede6f87f2054d510a91eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69277 Malicious code in male-tomato-llama (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfd5c4f438a14f782e9e5308c56c35c3cb4e4c3b30fc85d1de80ccf9e28be0da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69358 Malicious code in melodic-plum-ape (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82ee3638c036a24c862b57966826c429c8628bab3db74c27ea8dfea4e094b2c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70819 Malicious code in stale-moccasin-rook (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac9fe960364bffb413a2710b15beabeabddec4c8e8df4f0eb5a4a19506705fde This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70468 Malicious code in satisfied-rose-panther (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f5d644e3d58ce9e42c5779266e2bfd7d4a037c943fd841ef2e8c85678c61543 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69973 Malicious code in preferred-emerald-vole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f95ad2e7da55ce43a9f5f89edbd298df53f758d79846703dd38fc57cd4b4c663 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...