MAL-2025-160406 Malicious code in miftaiky-doll-partly (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9752d4e909c55aa087b0f6dcf9283c9102d05fbba86ab4ec5dd865e75dd7e29c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in social_heron_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4bff1b88f85be32497685a9ee2e1d0f502d697c18f3e36e1f86b392bd1e2a0d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-113783 Malicious code in extra_orangutan_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56d9359433375a4b45e0b6ef45164b90be8402541b45338427f927fda499b57a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ogi-ongol-ongol88-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b40d3e1cea504eca9f7857bbc02a7de53e094dbff1646ab636498d914ac1f21 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71322 Malicious code in unknown-yellow-cattle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c881519c12a22b4922eb18d8c33b97c162cb66ba2b998b37817a850a5ce4547a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...