MAL-2025-142632 Malicious code in fornax-loopback-google-selenium (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1453791ccec0e6d9af3bb03731b15537c00689db44a6584eef16befedb6d447c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in experimental_alligator_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 32e3fcf8aba1267622c1361a6cc8e316c3643cf906d9cd559a8d5bbaf96e9bf1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105877 Malicious code in miserable_bedbug-apptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bcae94e9d95cee1c8be0a14871595caf4ee08694018684d8430a7c7720ca6d36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in detailed_minnow_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3674bd5901d40b6fac7993f4728c80c94df83ef484490f340b43df24191bec96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-90241 Malicious code in rudi-bakwan84-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1414ced5a19358c8a09bc1c379c3ec66aedd67902b6c89b46f2940bb3e5de025 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68092 Malicious code in ethical-tomato-bison (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d70fb373e219e3ec59e370c81a1477939eaddf36606129873f94d027c45a9975 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in maya-nasi70-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1a108e42b0bb8140c9c67195ec4b2fcaf2f402a4301b3a5f55b93d9c9f08817 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-65196 Malicious code in rudi-mie53-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa89202b8d1ad85b9a98b01a79cad32e4be45d99753b23063fa4bd157bbf03a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-61245 Malicious code in secure_camel_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c23db19242f8201f7ce62a8734881d9a72f3853a72f7630e0b582549aa72dd31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wibowo-ikan95-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb102db8300ba5bf697d5a401849a9b5370b7e0f6ce1f70a7579bfb76ce873ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...