MAL-2025-186967 Malicious code in figures-materialize-markdown-pdf-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41294a6a54f63efb3d110086df70993ce7f964de9cd488774579c765e803cb38 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in exec-proxima-ophiuchus-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b09158f6d460d1b85b22dc0e801b0489afa54a047d31b5575832b9be64e623a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gammarayburst-remark-boson-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 189eb1d8deef0058a6d5b3ebe8e29eea889830c8792bb5de6f7daaefece15c2d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in promise-interpret-cache-final-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9605759b1020adeb5ec89f5a9efb1c8e482a5658943df0515f8cd42b73f4425 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in reveal-md-sirius-sequelize-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 968ce933dbdad8b347b9115160eb71c5d39ab52d322b18214ad9c9007cd336e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in library-frontend-update-eclipse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed2e4f376bb17f8ffc87980fa0da0d846405540d49493c4df426758297bec270 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188496 Malicious code in package-zenobia-elektra-geodynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15b0b6d51fb6f3b2c4e9271da9ef0418e408f6a5005898849822bfbf56f5b85f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187343 Malicious code in hermes-config-unuk-aurora (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be45cfa8332efa48889c39ea7acf947b99ce9fc254f407db0c6e462ae8de03c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avarag-olubis-ibai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f8886969fc314844b26c10a28cae35540dc9a0ebc37a51f19fb19e584cd33ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in imodiov-koifi-cuidcavuaompmnog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa724d53f823d079bd4c4396d639d2402a43baec4cc43f94967bf95f3fb533fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mitali-dn-ujokulia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4fe3b42e10458b696856e139ed241dcded0bbd138727f02cac74b5d77b53f465 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-180210 Malicious code in teate-thy-sonic-boma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b63d13615b456731c38ad0797af7f37ab0f61b78c7c5fe9b9ef41f92e8c3b933 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hunimi-satihub-naib (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 772e071c1c9d5178489509dad7f7e4be34090be4cb189c98b653bfbac6fa8a74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kapvino-sofgdi-ugaafaoha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6801a6eb2098d4942dd4d8b0b803a789a7b3ba72fbf371fd1671c704c6fd32c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tanabufir-softafai-dug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a56ab48c771b87edf5c8499ba51cee38813ded22566e230b6e2701e10f73dbb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tearich-racing10 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9a0824a31b14c424308536e1a848f8e00cf15cc3b15eb341678bd1b06f55077 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nuilva-bavaim-rasyasi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 300c4ac68a124b73be46c7dbd9f2563456544c7d153465ac54b6d53bb43a2a2e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-176044 Malicious code in mibasdah-manasisgad-muns (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 488e1dd26b8f6ca4136b8519c5afcb5d4970c92f05e4b13d118ad41c326b5087 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-161473 Malicious code in nabuf-otimn-gaoposig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17a99c84dad2844f462fa20e3e6a89fba4a9be53f693deb93dfb2e81a025d7c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-157182 Malicious code in jurss-gda-a1s (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6551b66616ff501446f2ddaf78f47df74479dd0d6ea405a5b5e672fc49cd80b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...