MAL-2025-174647 Malicious code in hitachi-poke129 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92f9300dd4f1dd326f3471f178e15ae5f5f88e99d91105b8ad41e5714bba3191 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140285 Malicious code in cache-slides-blaze-nightwatch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c88be71e7482888225f7680add9cd29413792e910587914de99a7bc32af6ddf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in coastal_pike_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3750fd3ebd1f1a04154ab35de6ad7808075d558b9792d034037faef9cf95464b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-116662 Malicious code in realistic_perch_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 510850c2cf25f764296eaaaa296bf0f3b7331630f5bcd687d1334f733311cf27 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...