MAL-2025-186001 Malicious code in capella-tethys-lynx-antimatter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3bd723d35218da7f1893c877e9a4ed4feb0ca1f191e3971ab7cc91e3f7fe418 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185556 Malicious code in areology-polaris-gatsby-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b703fe4c7e4dcddf7c314d7abd66fa38950215c0f1ce19c252e7a5a8c1ca487 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188034 Malicious code in meteor-zephyr-singularitarianism-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbf663c1c4d592f31696d9f7ab303b72a72c78546f1da93ab4fdd728360767dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185896 Malicious code in borealis-hermes-bellatrix-geochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aabad0ccc360e1c279a67510ebabf3b3e012a1b62e2c156ad51176eddd139646 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184706 Malicious code in oloc-uyg-ugoofifadihi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39f2af55c20ab57f579fd7b6d86333d2c5fe4ebb21e8532703c752cadc6b8d65 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in modasiv-kulvu-baiucaufaifuav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad2d085b354a8666bdc1ec38049622e580c50a4eb73f1ddd4cd4191b83ddebc3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-176990 Malicious code in nutravaa-nursg-nutr (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf33ccbbbb600709c985a4c9dda936019be71dac1ee9f200d08f5c45a02dc98d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-175666 Malicious code in kuku-poke13 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1f43c166e3b17ab77b8c5919188948700ad1fda0089fe0d5b37c5873ce4b46c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kupai-lulikoniuta-igugkfu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ceb40d97ccf809cc364fe1a3fd35eb9c572c928de4c4302e9c2d77b8aca5ca3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-161262 Malicious code in nabila-poke61 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fbda564f96101ae28dcec132a3640c1524cb848206e7c91922eda2db807d0dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in abiuna-mobile-ama (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7edb5cdce5cf18435aa36390e4fe26001ec5021b67be4362cd89253aa4aec761 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-156938 Malicious code in ita-23 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d348818a6346cf6dd0780e983e8115d2da08cf25d2e5ac98e9e3bbc35300339 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-132265 Malicious code in bella-pecel4-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30afbcbee31743ec26bb09420641a6ba78ab4f1e81f944e38b52450a45bea62e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-137955 Malicious code in wawan-gorengan7-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8fe03da02fdc701b8ef4d991533b460ddb7dc93bdaf01a6a82d7632568c1c4b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vera-tiwul85-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c04016d49c3316567799c48b9bffbaca72d455f457e522260074dae9dec34e68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vina-nasisayur38-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c659c50d8830fe3afcef537d07e7b61aa4ab1e20abb9fbe2eb4e2f06941d5b8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-127530 Malicious code in iwan-kue64-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3ca017ed42669643ace84bf931cdfa82e2d4b56cf883ec31c475723931e261b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-131146 Malicious code in wasteful_rattlesnake_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c06f3ec44dcc95843803b46f2dd6616b6daa319d1bc94c85293f0982687f0c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-111645 Malicious code in adjacent_vole_salmon-24 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 235197b512cb15fd1a881cbc3b143b2bc3d5c8f6cecb8df17b4d444ec5741e88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in contemporary_silverfish-teagooddev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24c482d95de0d51eac8c9b1f1f294153ce242e4df82e104afde3f3adcfa3b69c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...