MAL-2025-100373 Malicious code in chemical_octopus_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d3a0bde643d809f7d4496add9ca6bbfd63f5dc281adc6592914ae1668a1c605 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108504 Malicious code in selected_rabbit_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99d58eecfa17aa58d62ae57327f9fadec9c0b2d97952f3078c2ab56f03eba79a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-106050 Malicious code in musical_hookworm_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b054aa51db75efaaca25989bb2c4f81cdadd389c8cb700e92c89d2787aa61fc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109542 Malicious code in tender_rooster_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2369511d3c38788d5b8d0e7429293de8ab81b2a30f4b70b7f1a3d0d26cc528ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-106393 Malicious code in notable_pelican_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6a32715a3ff4b90e4b89719705b8fedcd6fdd2cf3358b029b1edd70798235ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110092 Malicious code in unexpected_gecko_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7de2f4d5a0ccc65bb2cb8f95ee2a077339d9ed241e84d4d164d95301bfd51739 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wilful_egret_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e59350ef1fbcad1b3279e56e2abf1c5f84193cde7de78c676107e9ac144a3a33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-99414 Malicious code in ancient_panther_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97612ea5ac57c4b456f312a932158e810c23e3ff4652e1c6adc6f1bdbac99f29 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dynamic_bass_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c6109a6d582ac47f6622ade05866e38d2c3802759bbf81232576e7fd828b6e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-102076 Malicious code in empty_porpoise_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6790fb554be85d78dcde64fc65359b6b15aa40e2c59e2ee543da2f3d15de647c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111003 Malicious code in worldwide_silverfish_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2db4100ca67c698d84a5e754a5ad83e883193511507dd8b165499970c93b7ce2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111040 Malicious code in wrong_booby_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c58ecc3675b60d8265e6283d8849c336890b6d26bcdad41a266483011acefd6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-101809 Malicious code in dull_spider_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a000f848e05202f7e049cd7de6638cc918f580ec8d3720777b417e5e7107c011 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-101796 Malicious code in dudley-teadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b390790ccb0a44d4c8e0b5cdf647931253b5c55edfe8d76cd1be135d7b2b4168 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in added_falcon_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2db71de851c9cbebbe3801e8a4e3040b421983e689feda28900fd3790650b234 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bitter_lemur_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e191443523131f24c0d72645af7d00d84a21ae848bdba914efe89baa3de4f8ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in blind_elk_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 394a13799393de669977d5f3c698b78aa2535df48572ffcc638178cfcd30f5b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in civil_deer_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62d7c03bfbe397258693ab87d9b9a6a80704930f92f17ad1c68f67e49e067c90 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in competitive_chimpanzee_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb3e4331b9040be2a61617e5e04af19d46407add0cc3a4ce2c4bae3cc9036774 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dry_octopus_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 228ba99cbcfbb08609f7d9678a25a3f6aed867966c3fb6c64363ae7e37b6df9e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...