MAL-2025-173388 Malicious code in buta-fbna-goafa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 817543764a82fee68074c9e6bdbd7711d64c97b8fc362e93ceb961432b3cd16d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-172065 Malicious code in apasih-leda-puakimsak (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ceb52a81d983250e8c6efeb6f165be9c82af086940dec8043b0d0f14d855d85 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miracle-dibook-ikaliku1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bb90ba99390cb39a1c7747978e1c6db3a3542aa1950f2af4965cf7afa526ac7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-156643 Malicious code in inufgi-gota-jamana (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2290e77f0b677e85ff72ea7401cf01ad6fa41a56cb1db3089a7484b21b054318 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-133155 Malicious code in erick-rangginang14-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fff7cd51f259c429462d09911fa613cd8f04dc3c0e030cae78d53cc5d295fd8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cindy-ruwet97-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf2f38472e93b7a8e268de2328d19d2aecd689ca4792742060b6d3f194e6f84a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-124579 Malicious code in yuni-papeda78-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa8ed882aa9f2156b5acbca0b21e5f4768e0e8f941822c4bd5b453d39b3c4256 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111775 Malicious code in cuddly_barracuda_fuchsia-25 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b0916bc1d588b00a01a6a6c7bd78806b02ea0c25160b50de183a21f34797206 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-100127 Malicious code in broad_wombat_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10f366d50ca0637e3abeb31ce552ad3608179c06b5a757ac74fa081ac8b261db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107617 Malicious code in qori-tahutek6-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d57789a79e0d6a3936e3888d38b7cfa5549faeac671b82a0b8211ca2e721f77 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107533 Malicious code in putri-rujak13-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce6b80d710663b5e138d767fac3208e6c4040b3d5d31ad71c1519bc96a5a7e16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107573 Malicious code in qori-jamblang90-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fcf5290ee83d748882a25d56b64eeaa936e38f237c2cf3c262a407acb057295c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-103030 Malicious code in galih-ikan62-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa1e0bea4ad631ab48d0db60f62bb1dda0f3e5400fa62635ab6b695afa8c413c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in naughty_baboon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0196846ea9f8e356d3198d2c8c3ab6757eb0d6f461e330d6c3eadc4a78dc2cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-97284 Malicious code in vivid_dingo_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75369ca16fe94db6de60e5b6192fba0d28f9943cfc677f1a1d671615e4d65206 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zain-rangi66-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfd3b244affaee97c3b0ccf44a02d061f257626a7214d20cf00aedaeea660285 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-87672 Malicious code in laila-jus3-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43664bdbf857c2f1505e8c894e3532daa43bf5b544b187085a547f0d51ebd080 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-76543 Malicious code in zain-tahu29-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26acc8aa275eb2fd16c88a92c2b92bd55cb7cd7ff48495724e7a895ea8b050e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ade-miemee6-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7072609e98b2db5bddcc8a5a9ca31c1561e050c965a3adaa7b9ed1fef383980b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67846 Malicious code in double-coffee-meerkat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6106092bfcf2988c977a1b05610794954bc4d986fb9a37b350a9d3953a6d084a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...