MAL-2025-140910 Malicious code in command-magellan-izar-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f37932fd636f353019a58a2c6e296f2f2032b7ce7a5382beb3b4f835090c776f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-73567 Malicious code in iwan-gado-gado64-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 835e953873a5b9a43cdf5aeddfb7c7cd569a071e5a26ddfb37974446e91d7694 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hanafi-enting95-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8c946dc3e37f7b789ebd5306dbec266b3bc4682e4e80e6b6473c9fab90bc04e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70838 Malicious code in steep-black-marmot (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c52e458ca6767e43ea7f7472d08355c5c9b6b54caa3307e49b3cba277b4155e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...