MAL-2025-187483 Malicious code in innercore-biohacking-aether-inflation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4624518d19df6decb94a7fc1c16a63c38a1ad699a14920802872453db27d850f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185511 Malicious code in apollo-xo-bulma-radiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d53fa6d63360ec3de4a80b2c87d0ef1b1c8be878f55db4510f568325a0e0271 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189962 Malicious code in transform-carpo-charon-hapi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9df721a1d001a47a01827b2556b96ff9d55853def17552c84f1c6e05a3172c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188369 Malicious code in nucleosynthesis-standard-pulsar-non-blocking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83cf65d391bddac395577093159b8c072f9a32c009def52db0bc36b66a431649 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in imugiay-ajvoig-daicutafamajjauak (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b451c9bcb882a8c28ec71f025d34b74704bcfba38e511771c4cae0f0cb735841 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in imodiov-kufni-acumnacffgteafsgredcadfacvfehxafe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19a367aa95a8f3bb9eab5281674493368db9f933eea8bd00c928aa798696aa3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gociay-ung-fugugga (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50529d6b024ee5d08a7d009c7925dd2eda3e4777ddd73b1110cc9ed4503d9015 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in masolv-avlo-cov (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c07211e083ea0fae208cb99c6313b760d9d02f00008518212b4e0fd4e484da6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in flights-tuiga-aluza (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da1bc894fd97c7894bfee2486dfc1e153c2529167bbd5ce72aec0c816fec7f82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in imuay-aig-iyucafg (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8bc12555a313956c840fa2f95349cb8ccb123b5b1d969cded955a8988f04c61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kisut-dfg-dban (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bed351291d043149a80cb2e833183d0d1fb92891a328cacb224124ae69627c1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in modasiv-kulvu-baiucafuav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f784368725443f94df2a87758a4fe9f004aba156f8fafb53d4fe6fa1b10756c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in modiov-kihn-afbaufcaducxabcags (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 795ef6687ac9e431738f91f80e1f0dacce3314a7bdda196b07cec92f45f353a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sonic-koig-timexa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e75de2b7f8dd962910f449e5918ba9947f6d7e8c42fcb1ba9b3e0f00593c276a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in itale-adci-gnuygugjkolujlnri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c218d0d32f1c4cbe5080382a40361ea2dc08e5ecd6f7e34f1c47e40c2b43a060 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avangs-olioms-nolibay (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e3b955ebd7ef7ffdd847716a6baa0a2b0c65b0193116c835beca02be84b58e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in flights-lutuig-adisdlonolo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6cda41c1e2274f3e042142c895a9f65bb9fa689f8151bc8c027c9e5cac9ad920 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in imodiov-kfi-cuauscdocavigbl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 584249d720f778abc1da96e0e565d0b027b84ed15643a2273de6fc51f04d6bd3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-182314 Malicious code in imodiov-kfi-cuwabl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 056d370663b487e46dd3ca2a82ab2a6d0342d43ddafcce685d1fd25b1f063ff1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-183448 Malicious code in lobac-ubb-gafugaidagab (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbddbefbc4676a4a18af2b26c575eec044e49b44478bee2906fb074c45235fc6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...