MAL-2025-108956 Malicious code in soviet_termite-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6d3f839659264dd8c4a81f123ec395dc7681e1739753813e26f3c59616c067a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99369 Malicious code in alone_wildcat-biggestdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a56af3102e021c3186d40b81146df6dba44e0238ba239d4de840ef6da74b00e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102894 Malicious code in fragile_shark-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1286dd1a29fdf2886f7d658a5787d4a40da5250745539f7fd9b4a19e52528cab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102259 Malicious code in ethical_wasp-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01cc95c9722d0910a8f4e161f7226487bb8f8c433559c79538c101c5da59d4d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-100951 Malicious code in controlled_amphibian-gooddev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb058e9d8c0b2c92940f78f3c06adc9e12b1eed607d92a3acdd75a2fb2266efb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108974 Malicious code in spatial_falcon-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58f4de427f86e1a30e9dd22f0e00d261366da16dd76388437b0ccf4c1c72a4c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-100767 Malicious code in complete_ferret-strongdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 574904246aff8db3b7e83fea561034122eef1f8755d39ea94b230e52e8748390 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-100968 Malicious code in conventional_parrotfish-gooddev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6dde6f33b52a73b4020f6f64d9154256b774219ef7897f9b165d22f0270a341 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99525 Malicious code in applicable_tiglon-silentdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bff21adbd72e2c70d9d6e55e9b81415e15d7fc33fcfd62b9578ec7a2add8e88b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111044 Malicious code in wtixqr-devapp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f64576ef9ec2f2852a9831f9819ba7322617e36002ae531f8fb75f200c7a8295 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108049 Malicious code in rich_butterfly_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3e51c673fcb1da2a57af1439094ed66c2e2bf2edda317fe911b8fc25e8008df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105509 Malicious code in main_koi-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7c94d80d252925abd33430e73cef47d292d0009597c8bbc24494108792b1e40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-107007 Malicious code in pcxreu-devapptea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 663ffca70461376d4d89855a0159b8819978321fa67a3304ef4547d6da2e49f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105944 Malicious code in molecular_puma-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ef30a33fdb2af0493c593374a486b7014b5b378edc6bff159df7e90b8d4f24bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110633 Malicious code in voluntary_opossum-silentdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d39c6c3a29ca9456ff7a0ceef522f30f16fe5154889a9c35fd9b0c88e13e5318 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102825 Malicious code in fluffy_alligator-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86ab75b8aca80dc049de8b27bd5c64c9e1ac092ba4e6e046b7a8dead2b362597 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sunny_chipmunk_scarlet-57 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 896dfda62e9b1382328e7708bec88a7642011809eed6d68d7951d4adde0ebde0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in youngest_leopard_gray-91 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7724513cafee88379a7163b0e165ff5ba8a172c9179c4097e65d70fe33e45e4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109051 Malicious code in squealing_fowl_white-44 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17a94d2cd8b8db3a66b55adea3f167abc0df75e1967a574bc3b0b40c05cb8a0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109451 Malicious code in tall_squirrel_maroon-55 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19a59476bc749631322ce23bcea3b85594b7bde1c980feadd2aae8469dd98d2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...