MAL-2025-100400 Malicious code in christian_sparrow-silentdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9248408c30c91063fd0447413bf209bc35288a751acf6ff75c9b94e15cd9d6e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99234 Malicious code in afraid_piranha-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9c8fd245871f48b791d437484176aef148f2fa9fc12b7fb1bfbc71bf89223e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-103831 Malicious code in huge_monkey-strongdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efbc04b1760624ecc3e1d64ad83ac69cb035bebe31243592ef2f25600f0d6954 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99981 Malicious code in biological_chimpanzee-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a3fd77fd428a90840bd745f4bc6cc03fc0143c3264ae51cb3abcc75b4eb89cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in handicapped_lobster_ivory-65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d03b70bbfbbff612f72583f30fa37f8f2f81976845a2dc82e812c231feae18e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in intermediate_crane_orange-89 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e891beb3953c8b2256a7d40a8a930d531ce03679c150fe13977c69b9def9d37b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in official_constrictor_scarlet-34 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c831cd98c7940951c3a4d29948007bcf805932b690da02565a625dacbd1ec673 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yabbering_bison_cyan-33 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc33a86662bcabadcab7c50e1ebf4ce0cc9f94147d4c92a331d3282a26d765e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in variable_guppy_cyan-39 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e29ce14a040014c47013e4e0aa168d375eea1e8bfb57d2e150313b6c8716006c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105881 Malicious code in misleading_bobcat_gold-29 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b51858fc9b4092af02f1f2d410a1861bb1aa394637561b6d72a0f4694e1886d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rubber_silkworm_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ade11ddb015a4032bcc0514cce42006313205f5fe0595536be508895d90285b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102116 Malicious code in enthusiastic_loon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de8447d7e747493906861764291a122a25301f23dc95414665331ed8f82597b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tender_xerinae_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48c0ff725cf206c996d7ac3d375a390e3357e456f4078609c7d06d6267c61164 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in uniform_ferret_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27dad0c0a80e5cf8e6d1d3418689dac91a74585d93e2995bae52efde6fc785d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in scrawny_heron_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 853cc89ebdad16a56f7daa3b26b990f32e6333c04cc214fd9ed9f2fe6f24b777 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in absent_hawk_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ae9c3b7674140a1cd53e16b68de8394d0afe5efa7272c12fdf7eeb442fd60a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in curious_frog_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0735e8972b3e08ab15dc750018d7efb2dc8cedc56914600e4d9d9a269d04c93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in encouraging_bear_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33d124f3fc5a9974a9840dbc6517a89a068fa6a5ac4221cd2bc7c804082fb0d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lengthy_crocodile_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18c88607935e7b5853fb670749c2ddd37ea3ddee7bf3ef85cadda9143a9eef4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in peculiar_smelt_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c7f141d3219d65d3ce2560609569d4561186fa2c9c4e78d7bb7da72d8633498 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...