MAL-2025-181941 Malicious code in flights-ilutg-iduihsa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f65d51f5974d7645eacbf7740216e63d4aa8be3e79248f9234f3ff046b024ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145961 Malicious code in parcel-karma-remark-castor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b675f3b0e242eb28c37eff42047754b0b896cbd5ec4452299033902d1bc3b9ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-129524 Malicious code in putri-dradag5-wekto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e64d321f15a1156ea33d9898f0c5b24fe176921a88c57984a3855f2b88df914 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109904 Malicious code in typical_unicorn_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81c85ab537bb56d2f9ad9815d886e9fc87d9aa7c9fa1e830a52b9a499e6f069a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-74171 Malicious code in lisa-jamblang72-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b35e687bd1529d09a7fec1c932059f99ff4c4c2111384ec4c4822f4d317da203 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...