MAL-2025-179429 Malicious code in abyil-nian-lasaihmuk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6887ff6beb1662366053fb9d62f640bba850623094f8667ac419f2f8a1b2e550 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in digo-kaimi-liabokamaam (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 269ab6ef79186686d6cd1f1d0613c27d3dfaf1a7c0723ae7331aaca7fc71cfa1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-171799 Malicious code in safwanaftab (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62502280bb8f6a971dfb86c8f06cde6c21c6bc8b6bb122866c833b537b4168eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-138342 Malicious code in yuni-bubursumsum79-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08f704d1224001266c94fbc7a8fe7828e517770ea8b399f46970b7123a81fef1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sari-asinan60-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79175b2ef652d9ca3a3073b56f246370a93fc9e03c2144a733eda48e8fb770f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cindy-jengkol58-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30f65ebccdcaf5af22f3bb81bb015507835a9e2500cc8e0e00843a6c286a4e9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rifqi-keripik58-remi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1506791047f1e0e0dcf9e49adbdb96fd4186eb7132e0024398d60a8e80ba9b8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-91594 Malicious code in utomo-mangga24-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67698ed245fd73cabe2dc0c99704da6c49f95253f63893c4fda98c15c9ddca81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-86715 Malicious code in industrial_jay_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15de70ba5ed8cd5f9d6ce2029892ee50fcf5b88645c968549856b876300d0b4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in maya-kemplang36-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f3354a56764bee0e4cc61dd9e42d2c0a4b89aa720c1b1ace54c1fc6ebfea73e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68212 Malicious code in faint-brown-parrot (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01b5c19a377aabec8ce4ffa35bac9aef49511b63d4c8f55f50e50cb87927d400 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fitri-lapis20-sumpek (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efb8706a27f80586f6bc5d88282fb6ef4b3287f3e2444bccd9843cec520e77f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kurnia-tongseng94-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a7a134b861f1d3cd3d7ce028b0aa8d4d52d30b408d3dd8c8dd60603bb50387c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...