MAL-2025-70630 Malicious code in similar-pink-owl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0247910e7de4ba623d867d1ffb121e5d129de62d2b3ff4412803a083e2a801bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68168 Malicious code in expected-silver-urial (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 445a257feac6823453ea3c2e51be3484a514bd08161ff1c59b22e83a4e4c1397 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67067 Malicious code in bright-cyan-mollusk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e624eb7541389ca5048b028459307b1e998c0bdcc290fda59e290b5083c63662 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67247 Malicious code in clumsy-blush-slug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb854086fbe4c5c275ea1a6c924e4d77d04d2d461b9e2b7a92624e10644dd9a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68842 Malicious code in inclined-aqua-vole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cad7fa729c46e21373efb287989fae102c4a3ad497fc43802855e7ed4f3d8cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69057 Malicious code in known-white-squirrel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d18e75a9683d78429e348578752801551565b317e89e33709163ce0970ff074 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68801 Malicious code in implicit-coffee-quelea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80713ac28a0a287d70171707490645760a9f94c8c115d9159082276af4f8e802 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69050 Malicious code in kind-orange-cattle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21dfa396aee0f96c408ef0b25d13b4931192bcaef8908d5c06c1b8954d8e66b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70813 Malicious code in stable-ivory-stingray (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60253aac18ccbf3661be492403f29ae2eeec8b924f277d61cb33e11dc26b5a35 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67436 Malicious code in constant-orange-tortoise (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8826d60228e6f32c5ba801d67c490ff1a586633d094726c624571caf02028a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70313 Malicious code in remaining-cyan-kiwi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87895d93af91085c3d8940ca4c9cf5771d7a8dec672aafa47b2ab431be0f58df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70098 Malicious code in public-black-mandrill (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e3fc999aca0551f714484f9aad8636c3e4ed44306d65a0f169d0c1bd7647c72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71146 Malicious code in tiny-tan-falcon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f843901419c246b41964318f8192499b71fe4b80d89f5dd2f4fd00eea35c402 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70765 Malicious code in spicy-rose-mollusk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d36b2f8879c9e35102e6927f0666f5cb449516fa714b607c068f964f0062a5b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67645 Malicious code in decent-chocolate-finch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c0fec97b6603182d5bb6b2ed5d0094bb25bbf636b4fd166eb45751ac8aed98a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71621 Malicious code in wooden-black-bug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8447e5e3c56fca9d4f014b4556d4f9d12c77f22038738044de77fc3ce1e23f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68864 Malicious code in indirect-turquoise-heron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db24658869bffa4aca5f30e0c966494b08ba4606ecca9938b1d10b785a953393 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71746 Malicious code in youthful-silver-landfowl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 616b9cb04877cc547ac0f6832ae1477771155334a52e967b3db062cecc118b21 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67983 Malicious code in electric-orange-whippet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dce79f878b79da99d42959702b1a0bf499ed8f90f918bb6195d1557f3dac936 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69418 Malicious code in miserable-jade-quokka (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bccc27504a2c72acb8535403ed01a002af8d8b10e10a0e19e8c6732ae0b52b7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...