MAL-2025-184948 Malicious code in sonic-kas-fag (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a12ce88c0c9964c4f59e74053f3602f9a409deaaae289b1b9a8252b760d67137 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-93818 Malicious code in cooperative_mastodon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8391f33a7f11b0040c42dc13d1cb7bebe736abec66541cee495d310079912fee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-84987 Malicious code in eko-nasisayur73-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a67d5068f5c2456e67045467d8d631e3b86fa1695fb0727f044d82f420316e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vera-getuk36-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7609e67bc7cd44d0b55897fe13bbadf78f6957375b925ac1c867cab0588454a1 The package vera-getuk36-sluey was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that flooded...