MAL-2025-152869 Malicious code in aril-67 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afd3a8a5a2c2a554ebf7715e600fefe73d812a122e7753a7ddd9070e4d6a99ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-170071 Malicious code in uinsu-technical-portal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d3778f1203e9f3b94b6f66d8ed5ebaac854937b54fe7ba1dccd2c5c4d2f8b7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mini-css-extract-plugin-cli-quasar-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8fab84b007bf18d2be53f34e9459eef3ed9c6f3df11ecedfddf8cb18bb4da19a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fajar-mangga27-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1cca7ae17024307697fa38ca0b44e11c89effab5010bc8f64fb8a4e5c57a8e61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in asleep_raven_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 489419a18d301dfd00fe690993a8478e7d9f53bc80fff104cb634661ef583dfb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tiara-rujaksoto18-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb031c3c129263175ed43356bf372081ae86bb9b67d609e75ccd07ab3f4d516f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in maman-kacang36-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a86bee90c60a678ff14b303499703bfbd217009226d7feb14d11eb5a7e954bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-76896 Malicious code in arif-otak-otak76-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6d2eb591cd47928bde45789b3efeee2c719ea01c2c089495e3b46e4cf8dd07b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-72335 Malicious code in cindy-gembus68-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1535d95c7760393e0ae52cce19c5861b25fe59574561af91412f9e538c0b35c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...