MAL-2025-171660 Malicious code in nishasen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc8d508ebc05fbdf25f7d23029b384e933626ddf3900821d127f454769b7a185 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-155845 Malicious code in iba-otana-umaibtu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5106e92a2e7f3ef4c75b3ba549dbc05b9a883d8f17ac911f1b658a2eac1ba6cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lynx-csv-bunyan-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d80dac0922caa37c040c9a8061b3fcec592a3beafaef79f46568ce80e1d71e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-88435 Malicious code in miniature_spider_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e63c93eb1b2b0c69bfaa136407eaf682085d26bdb20c589a70e12a6801a88fa8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...