MAL-2025-68927 Malicious code in integral-green-marlin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2741f721690a7673d9a821f68a28d09272b673b1f1ed7c70be4f5cd90316c00 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69538 Malicious code in nasty-harlequin-mollusk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf2d71d5cee5b1f092013b8e46ea6ba365d5eed5466ded9481e2a9a0e59e6e2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68578 Malicious code in grateful-maroon-salamander (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84b3dbeedba4c5d6ba4da4663e452dc28303cb97064310150be36cfe44a1e65f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69521 Malicious code in nakajio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2b3e418efa6d722ebd2fbb14e98f45494bb15da905ec813fbddcac9bd57db85 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66739 Malicious code in allied-gold-whitefish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8853c5cba4d87649bdd688a55e4521666629cb028433af29f15d83ffd9ab578 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67610 Malicious code in daily-lavender-beaver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aff642220207ef78065a9104d61db21d4f671e1f3ada33b54d7de84020c27484 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67096 Malicious code in burning-red-lion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca78abaf0e74f03764c4be1c98482848d5f26cb929a388e30220270ba69ee13e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70872 Malicious code in strategic-lime-albatross (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55265498f9cd5c1198bb5eb954fb63ed37c9195ddca2b656aeb45d6f55817097 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68684 Malicious code in historic-purple-bat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abd4f6743c8f2eeb19d293a0518149d120c3145785ed8b89d8463d6f4766c508 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68510 Malicious code in genuine-salmon-barracuda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69c08513caf509d1e88c70ec771b2d594afd96e10aa8c37678ff9167964070f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69632 Malicious code in northern-amber-rattlesnake (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7ccba46be897fafe5c7e950361a1aaa247bacdccea9c6b229b4ca3e5db14247 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70165 Malicious code in rainy-gold-finch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ba2e47d83deb028c2eb11eb6f0d0b7b0ca70077c3ea41ef8796af08c1857be8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68322 Malicious code in filthy-silver-duck (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95e6082061e4500be59c888d5ec79661d60c3a230556e7e9bb62e67d8e7a36ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68953 Malicious code in interesting-magenta-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35852c710354f1f9d000a925da8839bee1235db7a21e68203dd579392cea17f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wati-mieayam1-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a20915136dfe3815ebfd3ec568596f5d79c93c9825f3364a2bcb2a93794eec2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-66086 Malicious code in wati-tahutek62-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2ed7a9f8ce86a193334ce575c17930c70273d778e8e00877cc22176f987f348 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-63785 Malicious code in joyous_vicuna_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33db5d60106f8afdd50bfc8d749e7040a2ff266a1725750794a5a3610ada302f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-65316 Malicious code in sinta-kupat5-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a492fe79f17dfbf4b2cf687051d366f0067dfa7c0036bd628dbe39497cdad6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-62573 Malicious code in disappointed_gecko_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee487937039c05216ad9602bcdb2b7179f5d8f5610e5b5db88387190f965a3b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rudi-mie53-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa89202b8d1ad85b9a98b01a79cad32e4be45d99753b23063fa4bd157bbf03a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...