MAL-2025-138687 Malicious code in empirical-amaranth-scorpion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector febc4a7bc10d0559433e5fd29c4590005a340266a4e1fc611c8b9d8488b0fe24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-98965 Malicious code in tiny_beetle_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13f8c59ba874001b47c8fe6676a66818dca6ad1a73f7266d5303f15cc6f5c752 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-85538 Malicious code in fauzi-ongol-ongol50-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b548b1879086361eeeb7c56290954945aa91b807737fab44d6af55e44aa2f482 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68083 Malicious code in established-silver-newt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 836d34f20337b06e3fdc40be8f2bfa1dcbc1c88f886699694eda223ff8f5e2f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-52929 Malicious code in ida-empal74-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd754909b3a0f13f86c1d64b6088b8a626a4b51e34b82eb23012a0da78885739 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...