MAL-2025-70475 Malicious code in scary-chocolate-whale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b1c4746010c8c717817539b1013ed3143ecb21df2b8bb8449f7fccf9af2bd1a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70829 Malicious code in statistical-harlequin-dolphin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c59b30b52915ac400f2c78e3e78ca9e2ff6bbb0ece5956fe55b843574f16b52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68248 Malicious code in far-cyan-mite (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 944b21974b029f88f19d57fdca99b2d70d2185ad7d32292d5291b2a1d6ba76a0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71510 Malicious code in vulnerable-plum-bobcat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8636aa46a14abec32cd056771fdf0e8b7ccf52ddce2d1374613ef1b252862a3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68721 Malicious code in hostile-rose-crane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fc544884a9fcfa4d0ca3f4823ed7420bf54e49d5c0e2a0c3d3e1b5ee9ea17f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71782 Malicious code in zippy-aqua-deer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7478f3cecff20e4fc185cb82ac7476fb68d395c32d4e125d7252dd4457dd347c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68826 Malicious code in inadequate-teal-shrimp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c634bbb2a7ec8a5a8b68c26702cd247255594cd5ef8c755b3d6814212b475bbf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rifqi-tempe61-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 478d137ebdbb9fe801e8a0e0b3290ce3b9f019eb1eebbd93cbfbcfbdd43fa9ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fadhil-nasipecel89-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95b6fb59d48bcae188778b77b105b7b1f663c0abe295a425580ce389509761ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wati-tahutek62-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2ed7a9f8ce86a193334ce575c17930c70273d778e8e00877cc22176f987f348 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in desperate_salamander_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b8eb6501d2245bb8ae9bdb479526e0131cedf4a1a8cb8c80ce8154ac49edf52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vida-getas34-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af1b642acbc6d4b7a4e7e8366f801635e062a28102ed4abd5ee47be3c082227a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yanti-jengkol93-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59c50ce6cca95bc04ad68fcd5333afb4cb8a09ef115370a48ba5d66b54fc7370 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zul-bakso77-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7381549aab2e73c5cdf81072eca07a73993a9beeda89882466598d6055a28cc1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zaki-bakso75-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 236d2fd5eb0f08ffdeb57026846d0c5f16e32d13600b1cd2f60180088b9ec172 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in budi-ruwet9-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e52f53bff1ccc5c7926dc27118f1175b46eaf38a2f87e61c1ec2239f80fd880 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lisa-kolak65-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d7eb43540acf2dd015b04e2fd5ac7e4d0e4daff366749373f113ee43e4f6685 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in utomo-botok37-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25453110c6b1fe79eb7c2844a595a49b6889c15d486963da250797c0b5aff322 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zain-oncom7-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31ba3ae9a53989e0f3f27ba797e74a5de8d9e789ec4bdca7cfc141e77d4a602f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vina-tek48-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28b43920473fb8127e4f12e44993c2f50d8705591908ad678ebbaa00fbda231e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...