MAL-2025-128807 Malicious code in nana-bubursumsum32-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 418f6ed5a0c2407b87a503e1c4bf46df84b468cd881c41fe88afeb3b6ed9df91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hendra-kupang56-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b57c45312608fd4238e05cb598eeaadd53cffb3fb74b904112401e2a041c5f7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-115422 Malicious code in light_dingo_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b58851fa3a782692e0bce8413ad4a754ef457c15e7608e891950f7008ca21859 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in citra-taiwan30-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dcb5f6fdd7238ae2976bd6d7ba077acfe59f6ddaa468605ed3f45a48c8b8d8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in candra-nasi9-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 488998cc57b63052b215fd4621aefb8911bd0e5e64513664ed33fe7bded9ad43 The package candra-nasi9-ruro was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that flooded...