MAL-2025-139142 Malicious code in improved_mockingbird_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80ea2f6816e8ac0752b9542acd7bfb79935cb0249373cf5dc504196b617c0c4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wandering_eagle_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 721973fa0b3c2168e9400bdaeab24fc5640eeb34015bc9b4548cb88df42a0c1a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in neat_gibbon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d13ae13fe63b515a3bea314b999a97146309c65575753a90c0fc34fc4e1178f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in objective_whitefish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f6bff88c66651f7e6f1f177dc22d4833f4ac35c570d2dd90eb9f49536e632ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in significant_wildfowl_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9ab65abe8473f2c7bb27b937447bb493f59d7ef0c6ede02563c5f0d2cefd940 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sudden_shrew_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c21c016ff5d659ed7b0874b517fc943293d3375ad576a575e7ada0903ce777c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-116337 Malicious code in parallel_gecko_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a366477e0755bd61f4bfa55f07527387910d3f3c7936958773a7bb6fd7d5eb69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wise_lark_beige-12 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2143a77fa1638731f0836a113790d43f7e40dc320be7073425c056a549c8bcdc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109144 Malicious code in stingy_roadrunner_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e84bd724bd982462e5b62a578b826e2175822d7d8aaaf6c5b9f6ad34be37a7d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-110630 Malicious code in voluntary_galliform_dumbs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 770e6f2fa49b1272b6b252e5e980dc946dc8e2b6e9bf2353cb5d97e04833ee49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-94891 Malicious code in hushed_monkey_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c057e80ba84a7373ceb69106e11b4689ae64a1208ffc39583cbec1206407062 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lengthy_scorpion_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fc3e24408df524b02f559952a98726878edc2ac18562d18e6ff1f04a70ac780 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in big_snail_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8df4e17db30a9a88c6d1c6a525ac40bd81730e43f63595de23dad00b7b0351d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in necessary_clownfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79576a2cd5f32d6f4b0819fb2da1bf2f65ddd93d2d26a35f4438e7e198ae8c15 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lonely_baboon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 944c28357ffd20475bd9dd01ca8377cc543d03f46ff0b5f062ecb0f278f869e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sacred_cockroach_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1af82b4e349f1873d1a5a1675b3d1ad47a6dbc3d49622f294b48dfee1f0faa8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-91225 Malicious code in tough_clam_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd2fb8178b7ca533f69d75865b50a2f5d70e5cab03ad23e7b092273a808f1ba8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-79743 Malicious code in lost_impala_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 22ff302ea01120a547bade3036a2b24e8c141c7132aeebc440dc83c8df59b4da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-61518 Malicious code in unchanged_boar_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18dacd945e2ceb815182651c25ef98b6621b076050c0e6534f2f2171af75f8e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bumpy_mastodon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cc02951b6e280203c850d446530d43aac14af593dcdde5a8f4a697b7fc6f798 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...