MAL-2025-128663 Malicious code in misleading_trout_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a25924155c350dcbbd4a8f6242ebbe4edda659184d35613061375e72ed2a5571 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tomi-bika42-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be669a90fb1d77b7021f8d2515cf471258966d1f2cf36190b76a519a1b283efd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mulyono-lepet93-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbe0c80a357d7373654af8cd133c9603cdc805deba20775d5912f54f4e67833b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in human_goldfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb5c5563f18f2bf5012f478b028187a849ee3c113c9bebe9650c4546e7792aeb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gita-tempe82-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8aec9dbb61209a7582365d8050236c16327b2c5c17f6b221e7f23fc9ce7a4534 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in psychiatric_camel_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47a51d0bfa615a74adf249c751a798baacc8e78948b30f50183d4c8af90e6edf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wati-mangga7-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e96511667877d1f68578b8f7ff13e55608844ca0e5bdef1bec3425eaef30704 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in accused_camel_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 599692e6bb106f45cb2e2e333aa2cc989348f66eeb9288b3e0170564259cdc0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cici-sasag31-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6757a478af8729799e4c07fd4e5f79e53322837faec762e0900dd5f873d3580 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in erick-sambel76-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fa52549f323d61305856dc0a24bf3a687d700a755d11106035fc288a8fe1a4b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kresna-gaplek40-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5038e53eb51d695627c84ee20c4c48940e1e53bcbef3d423786428b2971945f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in organisational_spider_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a0c80beebb50bad18a30606e7e7559ff4ba2df416a48552bbb058a456d5e45c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in qori-kue50-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c599f49782be640571be3534ff1afc6014a98f45291b46f530ade81b9774de1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in slimy_stingray_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f469bf8339b28e8e94361f2a30ec1a9ab233d6305e3aa22fe9d318ec5431dde This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tomi-takokak63-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9a0aefc08198407b497466b8879df73fb96cd6076ffca2cd27ed8a7531911c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in uncomfortable_hummingbird_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7319b4f716fec9dddca0266c1c54a357f2bf91207aec5c170f7565fd86b3de1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zain-nasipecel97-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e4fbf98848e19e3125a1fd502e5784ff027ac410484cce255861dbc6a82f675 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in utomo-kue95-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f77cc9a44ad249b2213f0eb2071072dbfc6fc8b598850643c428a7ac94fde12b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-128610 Malicious code in maya-serabi70-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25b1400dd273ababc040b053b334e7ebc7f692419cc126ff0be5a3632113fcea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in liberal_flea_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c107a985e4c7fca8586ba98fecdd4589c7db003226b275c81bd9cedb22cfd02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...