MAL-2025-180306 Malicious code in teate-thy-sonic-dorho (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ab6fbe30a84f6da804e26788383661a814c86aa94029fbcbc17dc8c9137bb5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kiut-acog-avefvig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33bb32116ee13b0ce1927b90082e4988549fbc5ce3ff63010910f70d5a40e41f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-157136 Malicious code in jurss-apszas-a1s (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a01f9cd55c3f7548fed0699c71e5746fa1384cad109398f3267d1274148af983 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-151981 Malicious code in aibuna-mobiule-amainiua (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b93a460e2a426d6f1ea8ff7c6fd183bde082a464c8b949950c13b17fd3e034e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-170402 Malicious code in verify-ayica-amuinadbha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d2bcfd8622d4225c5fbc3d0cec73a640c8fb283bbc8e97439a79411eb5f040d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-150712 Malicious code in @miptaa02/hwghj (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83d978d1642d4e1606438b00c37c47dc6e879d0d67358a69afdd1033617a36d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-170416 Malicious code in verify-ayisali-ganais (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b5230a93ee8462136ee17df17504e7815d7fb40e74dd960113c8810325115e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in query-scorpius-meissa-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7039f8688ed4618719306a36c9e5c803751ab0b749811306decf282c7cdad2f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144795 Malicious code in meissa-bunyan-loop-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa2570039e57cef0e6475a2bb439694e2b71ad50221717be387abd3674716b11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bootes-enceladus-gulp-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1cab60a63c8511b40bccd2301495ffd61cbbc9d28f9404f78a527effde351c45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yuni-naget41-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bc3b706d2d70a910064b9ef22499d493d1c6bc53e305b0ea8c463577100b511 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eligible_dragon_scarlet-8 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31cc86f052865a20cae867088bb1b0d06eda1a90572a663223a264b7db735790 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110892 Malicious code in wicked_echidna_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5770fea9fad6ef178bc6d5af87ee2cd0ba00edd72084aa1fa65347fb68aa6a2d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in okta-sego67-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 485a236aaba8128c2da92603b75e527379b0fb9ce1c91426bf3586365c86f3d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-95402 Malicious code in marxist_aardwolf_requirement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55a42f76c8defc64ef2e16943dc1f08823ded7e5f7bec76b1e67401f77851b4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-96315 Malicious code in required_manatee_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1c4141ac09fe3698e34c80a5d8ac5f4401ca927f97b8950bef40a2aa72c48fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-94425 Malicious code in faithful_llama_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23a4b2699f491d7a00c59cfd9b3cb4901b104f26ae8bc0df227950811f52d9f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in jaja-sambel13-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 946ae80e5229d14256410e95e889db850a29b6d8db105f309742d559a12ba327 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-87985 Malicious code in local_meadowlark_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92e54ef17dc1116a665ab971aa9aa35cfcf77d2cb9eccaed74fdc94329ae65f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-80146 Malicious code in nadia-tapai27-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b05f9015f222effea2d4809fe51682d1edeac6b1d74e7860da848b363857a4cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...