MAL-2025-154659 Malicious code in digo-kamoli-ailasokaloiai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02aab31c2f8ac0e092c41e5e3b5453f5e5d50f05761f3f95f67d5fa5eb38b946 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-168025 Malicious code in teagood-yakuza65 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2df89c4619131ebd96bac85e1d807b1e64314f6407dd112a7d8d1c66396ce2f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141934 Malicious code in electron-virgo-izar-commitlint-config-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb4cf8e13bc345ccf34f66d35bc121a7daffb3dbb0cd0836fb77d60461836eae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hadi-bakwan12-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7d9a437f96d3e5d26f1c7ed64b0644e9425c309e4cf8dc6d1ed8d54d096f939 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-95222 Malicious code in legitimate_roadrunner_requirement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1e0560d95a2e71cc9522d70d62d8b032aa959d588f3886e0f1fbf0e9c2388ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...