MAL-2025-141535 Malicious code in deneb-callback-terser-wasat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 125befea8f472118838c92df441d309fd7c4676366f5a833ccedcb1cba6dd12b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145149 Malicious code in mongoose-colors-private-metalsmith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2016b08d398ea500476ae7f3915149632d7a439309de048e028ac5181209428f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140586 Malicious code in chai-chalk-procyon-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e028459fb96e99934f5ed8686ef1b3f1f0a5844dcb39718e08d7eb38dec8e55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-138796 Malicious code in inclined-black-shrew (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2705f85a0fcd905ce8ec3ebbe31f26515bd3c273b66f274be5b8879b3bfde44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sporting_primate_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 926f4c7e98fdbb970fc936c7617e23d49fd8b7b7aaa4fe204be44aa63c17b7a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-138064 Malicious code in wibowo-sambel97-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad05a2d7eade9023bb5df4b9fd462d3fb7373261a68643ca6c8c859ab3ae4280 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-133771 Malicious code in gita-esdoger18-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39bc7078fc504d32d2a6c8875aa01d489a64aa79500bad886d1e91e70feaf145 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-137230 Malicious code in tania-rujak2-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 426686d499c572546718b2534a5633101b22f0c93d6acdf94bb7c381a811696b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yanti-liwet100-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f288cba31c7536ebf6b16e33e6825eaebcd7405ecda10416c23a74ba5887b98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vera-teh50-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e54cc9f4b75383525ab4c1f1cf3259adc92c60f9eee266b27e81ee0bff7bbc7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ocha-telurtahu56-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5362859b605d7ec1f6da1f5ed369fff6867d828b5a857c129a6071428fed4686 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-125919 Malicious code in dono-esdoger41-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f855c1c822d041a3c89e03b7f61ab5509a04a6e595b0dc018d4cc2cfb29e0e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-125388 Malicious code in cici-ongol-ongol94-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 664b703dca203f0386d3402f5c4f8a36264ae0e5d522e289a6785481604cba1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-126902 Malicious code in gita-semur73-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 000180986eacd8f997b88c66f1277634d1a4c10b38bf6f2328738c479a05cc61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-125756 Malicious code in dewi-bakso82-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0945c35af12ed9e17d5b9d8bc60858f9bafbe69dddb62e336e5c0cd0aa815d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in erick-kue98-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89e312fd1fb5627b3fcad9a024b8bde6588a0a4c62de5170b48104c8dd0fadd0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-130175 Malicious code in sinta-oblok88-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e29442b28315411659def6d9824823379881cb491a13e34a185edcb828bb1fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-127520 Malicious code in iwan-gandul59-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff16114f2a08d22d96a8f3899c28567a58fb77cf01f910f623a1653483f73e89 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-123564 Malicious code in thoughtful_hamster_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c86a4f555c0693799db2ffbf9026263ea0e0bd5ed6a5b382490e2769295c284 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-121028 Malicious code in joint_sheep_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85bbe473dc2b93faa3fa59c7e8a3b820560e52b34a582bd1ca1220249ce8170e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...