MAL-2025-184682 Malicious code in olobc-uyg-ugiafaiduh (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3fe8e058080540d600dbb5535e0ab7c2b07d721d2f50aee626e39e3beee6f40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-171896 Malicious code in sophialopez (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc8752e72e5f7fec10aa637f3fcd78f1e634dd0ecebe3af8475ee28b7ca080f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in muklis-28 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1178e3c0f3bd7ce4923406927a1543ce4a692fcdf9534db2891f8fc4a5c5709 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-162651 Malicious code in nokire-kilua6 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88a9d390d4257d3998e1a004dae0d5acff90732b9ff055cca0e570e510d21017 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-158687 Malicious code in lookingan-namakita73 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c927dde8a87b6f2a892c4a91835e1f9943ff20f3b798b4180a319cea5acdb5a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-161621 Malicious code in nabuf-otoimn-igofogai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3588f48e7cd8e66bbd45cfa2ec0e545ead0b1b0dbd13af060432c5f9309cdc92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139826 Malicious code in axios-docusaurus-node-sass-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector edbb6d2fb12bad9e44295778236ba91dbbdac0b8e668c461c5030b7c439e518a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142755 Malicious code in gacrux-chromedriver-cosmiconfig-markdownlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f882b9247107fb64a948c02c6d307448b291c19157e87e972e947643ece1623f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-134881 Malicious code in kresna-kripik18-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 466b43df1cbed7e618c06dce8d4fb0b518ed98375f791119e434f4593cdf986e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-135625 Malicious code in mulyono-lutis68-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa88d93acf006ec2ff55da9feb804c4c5b68541e670d4e45fd6401233fec97c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-130877 Malicious code in unwilling_egret_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f92203e96c9332bab7bdd937a65e6e5ff8df497b720830a4c992bf717845dc5a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-128838 Malicious code in nana-martabak31-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c530474a5cf39d27c58da3f5b8fce5e076ce0d2e659e7a0d7138b9b10c6853f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-121975 Malicious code in nadia-papeda32-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50b08fd7ee2bb864be26a07968996a321f1fe2d576d86b2d8c067569bf85a809 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tremendous_wallaby_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 281fd1a0af2d9aec516d7a72796222477142571aef9a70a6f6d02c02e2559384 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-108194 Malicious code in romantic_mink-silentdev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a67664be1c3e9c04d5e35b30521448c9e15f5d9b3b8d8a20a66b6c43e5de833 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-109563 Malicious code in territorial_eel_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4a5e362817b33e72c21c1cf1dcee5c768c8878fa5a287cc866a00c32a4ed7fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in agreeable_flea_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aaa1ab8c99704f4bb62ebffbbf096a518f8130ae0d2d9478ea487b4262473721 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in jittery_mosquito_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e825e56bb2a3011a7e0ce24a6be3033538eb4e8216bce3fcaf42d7696669c640 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-105951 Malicious code in monetary_dolphin_replicate_automation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e72ebc4c95d3780555c299459964dd92700d5c43e95ddc280d8fb097be974bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in coherent_piranha_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d71017dc3d3940a2b18285d791763300a0c49c26be99349f68c1208ac424e774 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...