MAL-2025-175448 Malicious code in kapvino-sovni-fffsgfi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cd36e405b2d5b2a67207f357e9190bc75476062b95f7404f6b5cab8eae95d75 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147528 Malicious code in rollup-plugin-yonder-draco-fork (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 882dd9b292283f0e6f159f85b76503f46a224aac7d185a399da12e6e783d5865 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in aquarius-webdriver-mocha-hyperion-cross-env (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68132720276fc1b8b24564e55a9b95066777fe576c7d605049235c96d36911c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in siska-mangut96-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15d14da2c69bda8f7e82ed54ab155994056f0f3f70b7329379e04ab3497381e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in andi-mie75-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acfc422b3f4e9c98ec351c4fd9dc2c7efda2ee8ae58165a7c6e4047e00609a08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-80247 Malicious code in nina-empal23-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e286d632a357f28c821a4ddb871b0256a16e0c9cc66d1ff0ab2dbb84d754d8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-65970 Malicious code in vida-nasipecel89-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fb705ca79c8da642cd7c48611839f34810ad7afb324ab7acd81aa6b04cbb9ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-50926 Malicious code in bambang-tek76-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46bd1991edc2f5ea21fd18d4841c08090ab0ce8f706329626af6e8c7d930c70a The package bambang-tek76-miaww was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that floode...

Malicious code in citra-martabak66-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c5de8b091b5b050f1d58a1b5e806c109645430ae787ad9e6670c10116ab6b7f The package citra-martabak66-sukiwir was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that...