MAL-2025-105819 Malicious code in mid_gerbil_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e409969f771738efdea012b9f0122d82d292a24abac929b2958a2be2b433bb28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110568 Malicious code in visible_centipede_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e62af11579e8215d51d2c09b020ec07e13c8ee7b5316763a1f98bfe20250123 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111313 Malicious code in yodelling_weasel_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 042e0080712c0203ed67e9b755ccfd4bbcaee06c3a1c582b9c6a0a9836b0dfc4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in boyle-wallet-store (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eba189771a4744bd24e5917941e263518967aba9a93e3559cdabe89f16b7f593 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in constitutional_rat_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6abcab3d63446fd8fa7b8d4be6629e3d05a73a5ab31c4f21ded5451857405cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in devoted_elephant_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08ee4c340775b61faa3dadfbd70b3be789b1126e2718173ac4d806971ea63fc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eerie_crocodile_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8dcc2e1614a4df68991f600cf3120a4558fcd8086d730564871f1b47a09b73d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eldest_thrush_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3831f7cd16c1cd3f5558e944c51d8f6bfacf7e7885b13be925105abfc52ba5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in entire_panda_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8b7f299adfaac9264558e13146b847616615e1f07eba90bf54a9d6b3c6437b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in extreme_aardwolf_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6e29aa2c9a9b6fdba2ad2c2087b88ccbfd4d98027b18511a20bf4e293b015ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hank-wallet-store (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42503d3f8c52dfd734114894c33ae7896128f5990da2f07c1088198b6615890e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in internal_tapir_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 846f7a5e377df254bcb81b84b04da330b9bb96c2e70e4ea98ef0ffaa511d75b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in weird_weasel_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f515f4d6e4f6089419613b02375fb3ad110466ff85a0b6796123918d01e718ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109855 Malicious code in troubled_swordfish_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ccb2935628219002f0c444f7cc653b9aa669e4d15bed4808780374c216f691f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-101226 Malicious code in deaf_ape_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ba46e568883257e7f5763de58e463d0e6caa6468ac1473dfb377b07f5ff226a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109114 Malicious code in steep_finch_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 836de5783d9ebf031cbe06cef060ce67943235d35003a0001a10fee39f8e27d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102046 Malicious code in eligible_slug_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 005a0f7d8e7a459123d215b64b82f89f3700fac551121b7a2a14b0e1afab6eab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102156 Malicious code in equal_marten_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e79f18ce31e231bc1970080983c0eab37282c43d867f0b3a967376d1ec01bec3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107095 Malicious code in planned_carp_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd57d47e428c2e34f0d2b4ee2221fbd6a65596f4d40aaa091bb655f3d80f539b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108053 Malicious code in rich_hummingbird_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a838bfb253b0e49ded9106d825a10ae3677fc6095da42d583ca8f041754e92e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...