MAL-2025-137248 Malicious code in tart_weasel_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 296e63a4a271976f253bea25f84e679a3e31b25793f3e04a6cae8c6caf005560 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-120125 Malicious code in fluttering_carp_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e27b39632a338f6038cb8fa744baf712e9ea63c0e2b0952e1033e5791a9f3bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tender_squid_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac4e0e904ec2fb3b39896c53a6a9da6b0f843208b57272a4c3abfa5c592e71b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dizzy_dinosaur_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cd351abe677a02470f35b8a15a8119381e2eee640cd8773a09abb98b234b588 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105948 Malicious code in monetary_cardinal_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 031b6f344e11ea220055e0f44d6f8367f25d3957dc39df157a2addd54d8bce0b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-96609 Malicious code in skinny_primate_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8977027495448f88515fc5b188f32a6d66baddf2bf144c321c08cf374973ac78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-96702 Malicious code in special_urial_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f783fc570cd33e19ca6dcc93aabe034fb8cc962942a1b9b16f5f8879ca1bfa8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-96239 Malicious code in regional_mongoose_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01725bc3072c7af58ae6571ad6a31d86d096c7920b96ff13d4417d302e54a387 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in international_boar_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ae9032f1d24af793a7221e77fd565ce5519859c2d2be558db43e40adf1db356 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...