MAL-2025-137048 Malicious code in social_cougar_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35c4b8525ee3f924d8a2aedbbc2ab2f9d00dfbc339bfa0ded4f483fa56313f11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in northern_ferret-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3cdaa5321f08e988fb6d6869e1c1d73a9b54be5a3fe5154c7c5c4d7560ec382 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ugliest_porcupine_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6c6c70a738d2fc244fd370b3b0b80965e122bdee1ad728a0dbc7cd0ea45f63d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dizzy_worm_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9538e2c2471f4e3c60479f8642d203cbaafecd391941d96b3a3801cf7bcd6df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in novel_tarsier_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5eb51da683c354f8986197ba27003a972121f6ccb68cb4af26fa2416f25611d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...