MAL-2025-73626 Malicious code in jaja-ikan40-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01c7267ebe6d55e9dd34562d104fc68feacdabdc3a00d1e75ad75495bb415baa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-76508 Malicious code in zain-keripik40-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5597f2e8843c05a8495cc4661718aa9704344d401a5ac63dba44786bea26a6b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-75353 Malicious code in rudi-rujak86-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f21af652b03d6caaac96292ea05c544ee80747f0542acd4e3e328900260770a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-74889 Malicious code in patria-kue3-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6fb50a8fdc302c5adc5e83270dcdb466330c10093f753f37c7b1c323b66ce3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in representative-yellow-mastodon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 537dbe03284c7d8084295d89f227b56d8139b06a2025391f37abf9ea37cc0d3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in excellent-gold-mosquito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee6f454531c2af77305c8ff92e62e55fe1418106c05863cb11510198e7bd0513 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in able-amethyst-planarian (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a59109d62173b519cb9f936dc7cf460bdc30c2733353bb367709c89a5af2a52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in unique-plum-wolverine (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11b82a64bbbd17a0643bf20b70ab634061cbd95301a90069ebb11e9b314e84b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-71173 Malicious code in traditional-magenta-panther (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector edc75ca6e9d18e3be27df8c93b018cec305c635eacb3c737b572c470243b78e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-70551 Malicious code in sexual-rose-scallop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f6151914596df3e7fbc5bbb5b6e9bb4d0dd14880e46382f26ea90ab5e15d023 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-68247 Malicious code in far-aquamarine-parakeet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 715d04bda03e90522eb8d614bb7c398d3dcc6b8cecf44410066c103ac0b58416 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in right-amethyst-tyrannosaurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d99f46a3469d1b9095f1a8e6cfcb287828f7a4685ad00c630a34b39838bcfc8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in secret-yellow-cicada (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b4ad635d4c6091c56afe5a7e377f5e7fcd50e01e772744c49b10b52887cd85af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in long-green-mouse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3df995a84c13dd54c1bcbcaea9656dc6aca5a8b5edc7ad98167b5a6137b5d1b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in academic-ivory-starfish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e4e44e8a5bd7ab03f900103efa518041b363124bc48dde3e97b653f13ccf0dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in endless-blue-porpoise (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 855ec46d32ec3b98e4ceccfdeeaa05fe4fce0ac347aa7b29a0824983dcf1b548 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in binding-peach-guineafowl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cb585e000428d154a8ccac25963434455373163dde7ee81b5257c913bd4c045 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mad-white-lark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c39d868a57c2fbdb55e161a2b5b1c898979009a06a341429536bf82f7e02173c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in imperial-orange-bird (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 743f3ca96257188850168c051bf1db1488201b22c5c9547e942c34aa6520111e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69460 Malicious code in modern-peach-quelea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 511c60a346d5b0bd892399ea8aab34dff5d543cadc59e1cd9f08d03bfd80cf8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...