MAL-2025-67340 Malicious code in compact-green-silkworm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37c715dcbad1e86b4bbd8fb7263722919b92e8fea2085f1565b84b2789190e47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70960 Malicious code in superb-scarlet-vicuna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad566814aa021757db165bb5d59567e4e35502b0942ce1e0b9a5e5f9610a90d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70706 Malicious code in soft-jade-takin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 22d760d82d6cf5c00e004c217760aac7e00abd68e29199fff3fc9712d4724483 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69392 Malicious code in mild-blue-crab (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65410d24d64d7a7f7f83409dfecc7a3a17dea1b492fb699fb925d933056bbea9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70068 Malicious code in proposed-gold-mockingbird (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb8068985fcda1c305f46bbe863a6296ba79dbb09da3d1859e92aa9e1f40f3d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67490 Malicious code in cooperative-brown-lark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e85ba6dfe1b77e54e75514ee4d12c5f09080c9cac4c7f91ea33f76be9fa3e7f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67912 Malicious code in dynamic-coral-caribou (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 898cc20dac207be5f5e597c66540510fd4de37910630900b6c2a9491a94a3a1e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70911 Malicious code in subsequent-chocolate-lizard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8235263945df4e8450eed547dd5c5c9457588f318ba3262f19eacdf9f7456e04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69971 Malicious code in preferred-brown-spider (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8535d9a5cabc2038667a723f22807654c370f2c1b0b70b7fce54dbc945c68f11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68794 Malicious code in immense-gray-boar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65480087fac91a002e0cb3e8e0e4b6e2426f2e61a3c0795b4acbb17a302e5d94 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70546 Malicious code in severe-lavender-butterfly (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2a28600d212e6aebd7404ed287bf4e9d6b829f9d0806200fa0a347310989478 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69067 Malicious code in late-maroon-anteater (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1952bc3a6b79bbb9d86e49431a8e8938b816a3256f5b9b2ff21f8a63fdcfec8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70941 Malicious code in sufficient-crimson-roadrunner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4dce041b106780ea5890bb580c34e9bf9075288038ec16cc1bc6709fe6fee3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71091 Malicious code in then-red-sturgeon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f22f1a5fe98331be193a2517d96daa404c77c3a5e172d79174ccf68e8e0bd52f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70630 Malicious code in similar-pink-owl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0247910e7de4ba623d867d1ffb121e5d129de62d2b3ff4412803a083e2a801bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67983 Malicious code in electric-orange-whippet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dce79f878b79da99d42959702b1a0bf499ed8f90f918bb6195d1557f3dac936 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68345 Malicious code in fit-olive-tiglon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1d49f5f4d4558f3788ce82a2e896cd1e2e84abf89af33792e5faff81af79c57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67932 Malicious code in economic-blush-woodpecker (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 699c136b75355a828f2c5cebd7e064c53de7f25c0f3cffdc33e4ff9ade4ebf45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69403 Malicious code in minimum-cyan-marmoset (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ee89283559647380a1046505f02e277089fab5ff14451803bc856776f9ae676 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71138 Malicious code in tight-ivory-boa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b667714801dbd50a93162fdcc91eb405474a4a7dcded20178ceb63c415a896e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...