MAL-2025-111044 Malicious code in wtixqr-devapp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f64576ef9ec2f2852a9831f9819ba7322617e36002ae531f8fb75f200c7a8295 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108563 Malicious code in serious_mollusk-apptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f68b3f52efb60b429cf70db60e3d470522e0254e2b6ab4885e09257f2483d2ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-106066 Malicious code in mvtuah-devapptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6c5da87a5df320dc634920e80d7803bdee52d1bc9fe7b2104067616d0b56f5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105358 Malicious code in loyal_flyingfish-apptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e99ab5ee36e28d73029581c08cf7243d42fec549a7c907b087076d9984a2fbd2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-101621 Malicious code in disastrous_pigeon-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f578fb62303302648c268ef0e73a9a72dc0cc0a5f22146fdc15cb0135bfe6150 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111027 Malicious code in worthwhile_ptarmigan_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ec363d2e27f438efa45944f7631619c0af02eb942adb7b6abf248759614f21d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99223 Malicious code in aerith-notthedevs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad2d79ede5dc5fe4e4b5632fdc123c5bc657f5abd3a6f7e1adc53245280dd15a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-103611 Malicious code in harsh_emu-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62b3eb354993471d21600a2f3ea8a3f93565740ce68508b28b9b05f6fdf9817f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111324 Malicious code in young_viper-apptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d905a470780bbd194d657c28e493ccced2de24da1960f5573c1db217a36a8d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-101237 Malicious code in dear_dormouse-notthedev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ec3a36db1654864382d5d5113f862b5e67f7b71de99b7e915b51633b61147bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-103368 Malicious code in great_bass-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8be4b6f97a4ef1607cf96d2747c2a68dc865c46f44bb335acc5f11450175d9f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110227 Malicious code in urban_crayfish-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96a110f635b769e91fdbf785888354f84ae408eaf237f9391320d55c3236a4b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109860 Malicious code in tuna-notthedevs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11aff4df951317030df43414b9631974d7920f314f6f66d7f220c72f04b978e7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99814 Malicious code in bawiwn-devapptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dada283d2a00c3b0d45cfa2bd4e2401c213c52e5f45fb8474ce2d8513acc0c81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-101735 Malicious code in donut-notthedevs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49baf6523329832c4696b711cbaab5fad85e5c152f15849e4da1c323535a28ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105905 Malicious code in mixed_eel-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0911dbfdd1ec7014bf298b887eb25bbe97601d17701e2dd16745d7024c59f38 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99701 Malicious code in aware_donkey-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c27af153772bb84f749e05af5a75e25ccc5e3c8b296046a0a3c843394a16060 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99031 Malicious code in able_giraffe-strongdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d14ca669678daf2926d030d13337c7b33ce140e75effa1f40cb6eb0c972fc70f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ethical_mongoose-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14ff0c75d7b8cc86a6cd6673d4a5bfb3bce1f811a12ddbf90730a5915f9d8519 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in seblakkuah25 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f630a9549ae8768b39205f45445c3719eaaeb93abf7fb4c0a823b293cb2237a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...