MAL-2025-170071 Malicious code in uinsu-technical-portal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d3778f1203e9f3b94b6f66d8ed5ebaac854937b54fe7ba1dccd2c5c4d2f8b7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-152869 Malicious code in aril-67 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afd3a8a5a2c2a554ebf7715e600fefe73d812a122e7753a7ddd9070e4d6a99ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mini-css-extract-plugin-cli-quasar-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8fab84b007bf18d2be53f34e9459eef3ed9c6f3df11ecedfddf8cb18bb4da19a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tiara-rujaksoto18-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb031c3c129263175ed43356bf372081ae86bb9b67d609e75ccd07ab3f4d516f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...