Malicious code in @akunsansan0/biru25 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4642f9fda8b5e9d61b55a0c4b891e0547c4e0173eb462ca26f5883ff293cbb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sayaa-salwa-tea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe84003839ed24cc5889630467883aad57a7b52769b787be0cffe80c5bfb7780 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in virgo-xo-writable-norma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a988f0de965c3f72dc8524142cd72070b2d172dec3c81c688da6051723cacfe2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in riana-kue22-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa68403d1f9abd1de8cbd9250b65778a0897a86439ea057c2f1d141a756f813b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cindy-sroto54-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 891496d3ae1e8886ee546b1b43e31ffb83324ea306ee245ef2549c6806ccb1ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in experimental_boar_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cab940413df78f311c51d4ee745f7c72297ed2c7118d62c97e0fcc5b836e0054 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-96177 Malicious code in random_cheetah_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0352afc0f9c35afc30f662c842e55c6b57de4fa5c2ac247fbc70ecc50fe67ee7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-93924 Malicious code in deaf_gazelle_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fe8cbac80bceca5436126086b80f8a1732c52a8f2cf00f8a6ee5dfddbec7565 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-79304 Malicious code in joni-kupat72-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d08730428caa3737d53a6b3ab27b66a50afef40f3f04cc82475d5dd6ec88ba44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in natural_landfowl_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e93c540f19ca2a21f6d73a1e28af9cfec9c6230dc4724fdec1f02f9cde43b903 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-76626 Malicious code in zul-lapis86-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28def9d702f29a31eacdd1f7720f4fc3cddaa46a21a8d311f20229d33d721c5d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yanti-tomat33-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4fd28d824bb24a07cc5de2b22822fc8a55849c520888afc4d042aee3867fcbf9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in severe-lavender-butterfly (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2a28600d212e6aebd7404ed287bf4e9d6b829f9d0806200fa0a347310989478 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...