MAL-2025-189621 Malicious code in speleology-pipe-pino-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc12667834e75d07b49fcd90c909c4159cb87514b0d23ee6ae4ae93afb1756b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188745 Malicious code in playwright-rimraf-version-coronalmassejection (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e90c9ce759c2ff105ba07471c175f8ef3973282b1178caecc178aeed3b051da9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in goodafin-nuiyag-gifatu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cd2b308826e680ca5bdd475c811dea831814b8f24fee3decc0496d2b10d7f5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-174949 Malicious code in ira-11 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea4fd4b9b1fb6eac49a4808c74ba9daece8be0478d080719370ad186c08e290f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-174542 Malicious code in hakim-poke7 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65588a1c3b1ae91773fd1db832f29f07dc6faae982cea6fd7c7c67f41dbcaf5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in inufgi-goa-jamufi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5949b8c5e7db9698c5c442aa992894c6e8a336d955593ddaf940e725367e9e4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kapvino-si-fagda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d9cfd7558b0f2e613467ffec57539b1fcedefb8b02d4028fb662020b7beb022 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in teagood-nalikami27 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38ed5595087b049dae4b1ffbacd9e1357814e98fa9e0d100452f82a280082cd8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-168110 Malicious code in tealove-aruma6 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a5eff763a4340163484f0d824fbe253a0888a450963f612023ef12a757590b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-169041 Malicious code in tehah-nutday-kob (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac5ef9a8e22c9b82832ed3e59ea7016c727d9427f4af22277642e391e640a2d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-156157 Malicious code in ilal-poke53 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5db3c33bdf8ae761d024627186ab7c978fcee87d7cc97b367e2ec1921699ad53 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-154271 Malicious code in demdadf-nufaio-adudo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4e724f190307e6c88313b0515f54700d01043a07a13afa398c2db03e0d90d52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-157864 Malicious code in kupa-lubizfzlio-igugfsdgdfdgsu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a52a56d04a84db652f181a6386725e396693321003a657651fedf3ea89eb8f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-152194 Malicious code in akanabi-aligfuh-aihmava (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 649f73233df86e7ee27ecc6a996cc5b8f9ca41dbbaeb42641617f10c302b1688 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-164181 Malicious code in pilka-lniu-limaubikali (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53256f05192d03b5870f2d9a9ced84b63c62a60c71ac609303eaf14f71d6cf9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-160015 Malicious code in manuk-nanagai-gu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35da831865283f8d7a5569504f4b4c84f193d66387cce3f9a77d98d6ef223115 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nodejs-relay-rest-deneb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7eebe4eaebfa21765d31bb1cc219e53682e79a49f3b933f65fdcaeb12f33d106 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143236 Malicious code in helios-nightwatch-pavo-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a5dbf7cc4320130279ec9c0342d1b90cf3d0f3fd5e78d3f5f959952f9f5ccf6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139662 Malicious code in atlas-transform-taurus-xanthus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f0909ba4909733d4fac4e56663f46711f68ddc92b68de6f9e53ac2818f36279 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145481 Malicious code in nightwatch-postgres-forever-gemini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8721b5af0dbe9dec968beee5e2b0a96aad969806791083ca6d0be1ea401c9c23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...