MAL-2025-90050 Malicious code in rich_cicada_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e800f52935551f493eef9432774e88bf2c5d48b25b99be5bedcda73e7ca82b70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-83292 Malicious code in arif-mangga97-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17ced1d2c23f717500adbdc6b30ab9fa1a5b9779cb6ceca04731a206f8f680f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-84154 Malicious code in citra-tongseng61-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d57409f1270a3afb3315bcaf11e904b38e0c1055fef1533b0d7e02590b73c5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-92804 Malicious code in zain-lontong57-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fe9e669c52372d2b1d185270ecfbdf1f4b8ea74e55d96ff85cf275adccfeb8f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in surya-sasag88-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f610dc676a5b05f7dbb7cbc734b05139b2662528dccaf2cfa696cea0b25f477 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rifqi-miemee59-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd37f0fa3ed0693f85339b331270de27c0ca6bdb19511af958f248a5ccc735d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-89793 Malicious code in putri-tek83-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4581d1164d93276c07dd6d3fe0bc48adb556f920e234a00bcb813d2a2fb65560 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-92724 Malicious code in yuni-naget79-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 303f52aa281f437c5250153676ae9517d0a3cf816ba00913d53c2d36d36738f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-90471 Malicious code in shaggy_cat_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04ed61758eaecb6ad32d84f40a5455f2d9e053f897ddeff2870820a3b46fa9aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ade-naget54-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50569e9db12b9cb08e748831a04d4df62717fe50b18c202e0648fb7bf01639b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in agus-getuk82-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2b2a90fdf5f83bc2eedc1437b3ea6ce570bbebac4a3740759bf2a4462f9f771 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in andi-jus52-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a65e043990af24a3619f4f7237a5fe521cedda23c232a0e235c971f1de48717 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in andi-oblok44-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fc890ccd64079437d2516acf6e9d96f25de589b6e87d0a145b9a7cf2f107c35 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bambang-taiwan88-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d5ca100d492ea03718edf312b320b9d930f8abcc58af3b80ef9cab516d66776 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in candra-enting31-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f72b7c76e0092215982600e4ea868361f35430efdd25b624cc99f650b16a2fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cici-esdoger96-kyuki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6960c3e1e88010acab460853fcf313cf806656e957cbd73c149f578ce252f385 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in citra-liwet28-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d941a48c5d34045a74c5807b83dc35ecdd6e94c5f49171aa8a4473671e6c888 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in citra-tiwul33-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 586f68f093193fad9dbc2f28419cf459b66b3d6957c2f91592a669d22cec2028 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in constitutional_mosquito_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bea7c0d58ac2cdd234899afd7f4e46e2a7a5e0db602762b1a62c344e1259e557 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dewanto-naget89-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b222644b8d7e6cb0ffda9a5e2fe01d7c538e56c62eefc492af1f3c93ce498827 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...