MAL-2025-70234 Malicious code in reasonable-silver-tarantula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 170032f91ef3c3b83052b0e1801a1ad0805ff916f290d72a602de95957b59532 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70036 Malicious code in profitable-beige-angelfish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f936d59fba9a693c78ebd8b8c759c92c8af8dfd20a3831831453028688c533d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in okta-brengkes36-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83a513e6c4f1dccbde7822bff3741fdead76fb71d0e5502e4905e57c48ea8a9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in operational_mite_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c0b5937f82471023d32d312ebbb76ef201a1a241165b144dfbdaa129f1b2de3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in liquid_trout_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8030dec5e9648079e27eadea18c9d97898b4f281c0129cfa2b9e03d727d57caa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fauzi-buburayam81-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90e424c92b3ef076bb62dbdef10d1294276b78e8f025302a0fe311252443150c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fitri-jus49-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c17677c00f586beee1c107996e9c3f87f5a883b3a8da922ebc242bb741848d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bella-asinan56-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 583bffbc4d1c9784779cd9bc33db2aec1762acec9fdb220e6b3213aa9d3e3b98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in budi-kue38-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61b079cf589d9bd41890ce47ed93984a9e12341800bfb03a72ba93e7ae58ee63 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in xaver-kue52-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24e5a87d1a95c95c39b7109ea04acc8ae0bb7d17946e0528ed5533c53b02f79d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in automatic_felidae_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b318d92b037adf03f1253367cfc49c657a36eb1a769b71720c1e0472b95342c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dono-nasipecel35-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47449ee8eb52adabf2ff752bcfc4890859b038345c44ef3049ed8d690f1278e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in xaver-dradag53-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8bf04da00b94d3a5a1420e908a95c0ae10cdf1f4d81ebcdf95f90cd6a021688 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vera-tek28-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1665c5e930c27b5237d6d4a1b0b6a47470c99f489ade6a8b7701c575d0d7c898 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in utomo-botok37-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25453110c6b1fe79eb7c2844a595a49b6889c15d486963da250797c0b5aff322 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in umi-saguer14-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85a7642039eec9ac83001192fe2e38471b29f04793471f7a3338e59bb9ff5f19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zul-lupis44-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fcb65e4678af516223789a6be7bfdae5801aea0ac80e5c2718fb47a544a30c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in utomo-ubi2-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b67c153cb3928bf20064421b37f54e7afec283cd2be8f5612a0a2bc5a5f7e489 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in automatic_wolverine_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ea2720337bd74d7f8b2edb44226f378cd94febd54cb3cda70a21fc5c31f1816 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in putri-ragi92-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc2681a4efb808ac59a5b414068ed65e35048956545e56420acee790c695f257 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...