MAL-2025-125599 Malicious code in conservation_salmon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f950d8f99119a766b09e1e318fcae2fe031ca4fdeff4887fac52a15e388b7bca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zain-gudeg31-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c50ba02ddd2d28e4e4551cea1385c5f9547b5a351af8d30e24a3a5d977b4aee3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-122833 Malicious code in related_partridge_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4505afa2fe0d53989297416b7dfe3768410b7a23778af79847490b9fabb29ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in swift_kingfisher_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8512932c7b86547804d9789b6eaf6431487a11d15e7164a53d49d3f7a02e9ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-116666 Malicious code in rear_marmoset_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37cff5a9593ff11d68a10b07dc96196e01c6ea16575a5f64b22ed44767e4a942 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102685 Malicious code in few_gibbon-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9cc37cdd6b78561b306afae6b6f99f80daeb89c61236490772353dc9f4c7708d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in correct_galliform_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d4b4b75421b2324b7e08720e9ad5db0fc483fa2762269a4113d34e0a0aced16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mid_bee_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a05810913fc5dfa574237544e52c6a7824fea38ba95d2fbe66274651ef62101c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-61675 Malicious code in xenacious_tiger_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55948512c07079e2e83ffb48307f262d71f4faa6d4014979d590e9b997fd56ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...