MAL-2025-174096 Malicious code in divata-tunbi-iva (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 982036e76d57c10efc87ab1850ef2c36de691616b613132d2c811899376c91e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-169076 Malicious code in tehnah-coadifad-musrika (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dca023883d802e11047ccd094461702fec75b425449f7bdbf3fcf295ef4774fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-169879 Malicious code in uinsu-losiat-diunsaivu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1aecf0cd5d5873d5294d2256939131d9e03a603c089d0e4e5ab894e735c56b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-159560 Malicious code in manapf-manta-nay (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c574e7b15c3bebe3d170dc5e7d62853dbee55e1fc6645224e087e458ddb74a23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-118620 Malicious code in advisory_barnacle_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa2fecdc1c338a99b988cd5a18790290edb36f78685837e44f77ce1184f6a176 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vital_mastodon_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6eeb51046985b41af3070173b7a7b0e616dd843ebd4b080d4958fae84f27eebb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-90227 Malicious code in rising_stoat_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f167572cf1404614873a14bcdde521823c527601d895f8c06e7a83b2fd5760e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tania-tumis34-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99d46301fba6201b5816e8ea35c568ac45f4a978f911cbf08b118d6c17ad080b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in comprehensive_pike_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e420df5d3c4da4af916b6878dd716fc226607df0f58472ab53abce6bf92fdf25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-53334 Malicious code in maman-oncom69-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6cd6fdbbacc04a3c17cb3ad3104dcc7aca17a103db9bb43e91a0f4bf97d5b0e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...