MAL-2025-67531 Malicious code in creative-black-lobster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c8620c6bd3e7e30865fd6023818cb2bfd7156bdb1e6769ec4a170ea50f3c388 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69807 Malicious code in pale-beige-landfowl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df4844cc0674b3a81e22736f186753c178481e40e87e8efbe5b2fbf55a522b88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71753 Malicious code in yucky-copper-leopard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab7141bf8adc65b4424fe3783dac59cc35e718e084f8e457abe6630b234b42c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68023 Malicious code in enchanting-black-bug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cdc242006bfa1a3ac7d627d4dcb95de5fe968643e8119d6b6fffe4746e5d4e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68584 Malicious code in great-aqua-loon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4eeea86226189671bb1dbbdb9b0c46a7591eb3415b02b2220634497f45d6ebe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71091 Malicious code in then-red-sturgeon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f22f1a5fe98331be193a2517d96daa404c77c3a5e172d79174ccf68e8e0bd52f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67609 Malicious code in daily-green-hawk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4743d24a01477230ba6fcc7e5883b11236d12335f77de3fe807d66f886a7b4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66973 Malicious code in bipy-calculator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cd05784c67e182c17c4bb6a475616f685504c8974efb8ceb0edebd8af264fbb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68855 Malicious code in increasing-scarlet-lemming (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7eccec2d0b6ea6c48780921b7d711e065f6890e6ea78def0423c66107fde8de0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70234 Malicious code in reasonable-silver-tarantula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 170032f91ef3c3b83052b0e1801a1ad0805ff916f290d72a602de95957b59532 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71508 Malicious code in vulnerable-cyan-tarantula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dde09e4f2658c23d35c555d91b777541f2c6a963bc2d9ba3d496c6d004c5924f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70944 Malicious code in sufficient-maroon-boar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8d8c7a6b9f4533d4108040aebeb923cd0b7edf4f1b804c486dab6d88f1f08b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70755 Malicious code in specific-fuchsia-scallop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3dbd57b96144014864808047e3c69cc4d0427ca3067c011dcd33e3045f52946b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71032 Malicious code in systematic-turquoise-quokka (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad5189f884cfe7df5c9d999ab89b0f5c060e8a4a3deac4ecffc091266bdba9f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69524 Malicious code in naked-gold-deer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0d39f17e1f57905ea98cb159960424054786cf96b73dc5586d1c624fcc92adb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68265 Malicious code in fast-sapphire-guineafowl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15afb2b26b47bc21221d9a950aad20c10461ec796cf8b6e7ae7633ba452d3237 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71337 Malicious code in unsightly-gold-wallaby (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57b33bc4d79db5cb884bd14ddba220d2046c42655d7c3fedf0d81092c1aeeea6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69549 Malicious code in natural-ivory-centipede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c20d3a96c0f8e2bf9a3c032b2644c04aa55e31ac0438a42419aef0370e4c5246 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eligible-peach-swan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2207b76ef8202f76519a64a2b9607143566156afb8c447abf9ef797981025db7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in welcome-orange-whitefish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b790823ddd06071bc58f646f8e96bf7c7ee2c505f0bb4ae1a2a332176eababb8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...