MAL-2025-102680 Malicious code in feminist_woodpecker_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7809cf2b36a4cfd0feb485b17d145976beceb93debb1e24f90e43c8270ca9cc8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-100330 Malicious code in changing_whitefish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e3f665718f62d1d6df8d0e2be32b481003abb1b825ca0bf589a2b3b32cc6154 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107346 Malicious code in promising_finch_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73b0737b3bec0753bd5806b7cbb13389ef56cd4a137501faba2f08c79c54174e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102727 Malicious code in fine_kiwi_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08054864519809bbfc2c235b2c52e6691d25da98300cd5587f4b06a652ebf7b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105442 Malicious code in mad_squid_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df5bf9628ee8a0cb94481755612f253d0b9b319f8c08e21eae4db3b9889135d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99344 Malicious code in alert_stoat_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e486df008b30fad983acbb49726254275dccd12d47846f44bb8366fb256f933d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107980 Malicious code in resulting_vicuna_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 975d8b0d354e02b4ff4d7ff7bbfccbf5e8c15e31e511feca0c19c1d43073c67d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109100 Malicious code in steady_bass_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa1ad880808aed9971cc1c2acdca40ea38b7f46b9a74a02345bcdfbdb665b4d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102547 Malicious code in familiar_dove_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28d5af38438491899662ffd26a24587673d7eda99e3f41fe3a64c743e63138ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110773 Malicious code in weary_booby_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ef214828d12addb2e9fc92ed7983d6ef20c780fe044ffc15b7b2f75dbce8f7f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in howell-soluble-pot (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c36e0f3c88c2591be6af8c1066ea67b39a57e7180adc37766cad8de81d1e2328 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107967 Malicious code in respective_wombat_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a7d34fee80264dafb7655bea0ae54ca1d949e6d9e646c9682dd1cd74bf69acd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-106403 Malicious code in nuclear_cockroach_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9350e04c56aba1e7a7b1aad8c1621547c7a8b612b75e888150aa8161f78afbc8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-101157 Malicious code in curly_guan_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 44f66eb2c5e30505e9cc5430f36bd2270d77e2de900223be77b4a475e4bc0dd2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107362 Malicious code in proposed_locust_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 324724be57216f39ce5c677d8ef88450339e68243ff7eac9a37099d71ada5181 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-106747 Malicious code in opposite_beaver_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4be8b6522edeee241378a89fe44eb7895ee7068e5904bc1769b530e5fd197c82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in domestic_centipede_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c707e91fa463f67ac1d82690cb8d9e8b1cf875ac49a6c3c49b7cfb4d4f7424dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in stacey-validator-catalyst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0898173c7756e700fc17bcad1fbe5f08c56712ad76ed3c79bcc449553f7253c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in influential_gayal_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7f73f16ff17dabcf827e3dd42c1bf916b6b734de8d33f92516b8267d06b3837 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in adequate_pike_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0010602855d29061999d0d75c696895c0dbf573ee5703ca1f3515e0f0ca224a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...