MAL-2025-125624 Malicious code in cooperative_coyote_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eff15aaf9a7cea2f7ec1f47d0b236758777907511b193860c3cec8e4c948746f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in reliable_limpet_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c147b9d6ed559310fd9e7a0d726c84e335fb79c8637880807b3ac1d578938f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yawning_gorilla-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c20fbfcb3e6084c8c0b97b790ec207735520c7e7378e8f6ad24aba213b19c2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110654 Malicious code in wandering_smelt_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af76789182a2ef771c7f2095b7bd26cca9aaad57cdf763844c21dd369a653b2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-100302 Malicious code in central_butterfly_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6da481233f7f0d52bc5654c1c5f4328aee37efc87f12c361399a9fcd1c30bd7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wasteful_pike_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fadb125bd22137aef9a53d09dc8d6b0dc8fad2bdd359abea4c5cd9ed697d7252 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lonely_baboon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 944c28357ffd20475bd9dd01ca8377cc543d03f46ff0b5f062ecb0f278f869e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in melodic_silkworm_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf128914de8944d5d4a446b20d3a85098f509e179d0be3e88494d3b4b46fc488 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-60331 Malicious code in dying_tuna_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77a3128ea2b498a914fa04dfc4360190ecd4bd1b1c222c0de03ac4145be26f60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in minimum_limpet_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf53f1df538117254d694b359b0c7e88866c5e3e45524857ed895156bb84846e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...