MAL-2025-100901 Malicious code in contemporary_chimpanzee_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b5eb8ff292ded19a0bcc5d1b320cfc8473aedeb6b598f338f5c25c3781d1cf7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in proposed_earthworm_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea246e5e7ba6b241133819719d3ea21ef3cd8b71e79a0c7b0d1f19d6b9b45555 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in impossible_aardvark_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7991ba3d52edb4d90e5308da0d85baec29bfd6e02dea322dd5504f3d75ae5777 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in agricultural_marten_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1835fbefbdb20c11a61c52e978d2b2a5b29ee4be4d9158ac429a440210df61a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in boyle-validator-catalyst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfc67fd48d5534887ceb9f49a56f0e72f11e6df2ad8c201f4dce6d163d89a5e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dynamic_bee_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b758ce505c8a7fc1f0e14cc17d50aaf73e3fb07e08e60edcef5f11a843e54ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dynamic_mosquito_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6d3ef1124b4a86532674db00d0926bf10fa2456ae339a12610ea6ed9422c949 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in formal_jellyfish_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d681e05398017d5a4f74a969e4664a1e982e8e0e59a8222535ea5ba9a123b2d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in healthy_badger_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4778f861651571635d318508c663f1607cce52a471fc4193f662a551464bd01d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in just_sawfish_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 667489eb88f788028516b20e0b2ed4d7b3f7d058f9d4723c5f261477f66daf63 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lazy_panther_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a1ed39f8c72741fcae3e12180227a33ae3b329718a69498ce46123a6fbcd703 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in legislative_puma_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35d16361c90646e7c9b157ba0abb3f9a211785df383edfa944eb0a87db87556d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in liberal_koala_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca2075c5b9e167a55a88c2f9f501db7571fd8f9d73a24c00faad90a275c4c36b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lois-wallet-store (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a0fd2b06f58b94c952abdab84d1d3c7532ca82250d2bbb33052eac9e89c6561 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in loud_fowl_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60c7696aa520beb4b580cee875d3556b61227f2f7adf825a89af6f69dab63bdd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in marianne-teadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a21a4da0c2100a9aa6a491d719af9bc93be19dd4eb4c2445c5f358d1f964492a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in michelle-wallet-store (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60b76d91b5ccd47248909b50e3858acc4f47cbc81451c7b9451fe44d0b8194a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miserable_eagle_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be20f27ae189814771cd58f3612320c7901c4c210d1254c377b3c1062f5c80ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mushy_warbler_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98735471b4594cedf2511b87f2a8d9710cea5a4bf5096e58119d623c69e90610 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in outstanding_turkey_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 284d03ae078b69eef26d84ed4828d6c650c978413320e9cc49e32bf29336e7b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...