MAL-2025-70601 Malicious code in shollypeez (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e3ce566bd795207c0bc1cb9d587dcab74e6cafc41b530a2c6d9c8a7005ceb06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70351 Malicious code in residential-gray-peacock (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc7d59276750d51d23d9926b45774a427f9e0a6a40d57887b1e4a97f47384fb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69925 Malicious code in poor-indigo-thrush (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 195250051088e480a83073204add7481d7e5043bb039e0d1b54c82cf2347b15d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71649 Malicious code in written-azure-duck (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0986ad15a73a8fd29d8f24e25dad0cf708482a0fd2370a73d604ee85be9333c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-67517 Malicious code in costly-purple-anaconda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66320ad6de3599215aa109f6cebebdc1f8e71f49c8b848ab4913658d105ee39b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in useful_crayfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ae838914e99a9ee9bb9eba8e6af69f88aacbe473e4e3ba9393cef015ef177bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in andi-peyek81-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d05e59f06e6860bc06e5a81031142cf2e11407cce62901ed8b5c942e435b7f93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in agus-botok48-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector addfe07bd0b5aba5f5521ab82a9f588cf598a0b39712057ce9ca06b922e5b2f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in arif-botok72-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e6e90fef25cc884cdaa488caedffef5f13decbc104098a5af40e5e3666e0855 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hadi-tahu42-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e9c89ad2bc34d012210aa8f4083bc09f1dfeefbd1a134f548a552bb2e1019bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in qori-klentik57-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f669ad8b2e3660feefca9566d837c3a5a6e3f39656bbb68d5d77af173aeb9b2c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in stiff_hawk_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05bd8b95005fed1d59c2e764e79eea3f02bb17a9792514bc6cf5fe9ed47e9f6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tiara-esdoger24-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 671dae14ffcd1158da8ebadcbf0522bc04c567b3c0bc679b4d25df7d9d63b50a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in unconscious_smelt_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 801478fd8dd5ce7083e8e7e2f6fb5f113081f492db943b1adf5b49c431569af2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in utomo-mangut22-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 612012e329881b7fc72e29f181b180a592b340f1d88e5f0cc3ad1004a51c4c8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wibowo-klentik61-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15cb05ce161013a2a712f3c0e8d03aaafab07a6d04f239ab22e48e4f6e58c263 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zaki-lapis91-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6be48456cdc0906bc1a76abe73eea20bed878e7bf37f9ef67eb6353c5161b7a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in senior_nightingale_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49852a9157245fa029b987288ac6e377f9314c39ce227fbaea140eb4489fbe5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in umi-telurtahu33-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6f5b1aec87d0ce1e7fae7027b7f7f238ce1ec6261832b186f4b71be0cf15c39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in budi-kue38-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61b079cf589d9bd41890ce47ed93984a9e12341800bfb03a72ba93e7ae58ee63 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...