MAL-2025-185873 Malicious code in book-good-old-sun-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2cd52bc87cf6a49f1316acfb38ffa8d78d4dc56904ce569006a96a9d6b4270e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188277 Malicious code in nightmare-semantic-ui-init-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8dd9e5c43cd91768bb1e1d176eba1c1544754be3fbe8355a892cc84adb8667e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190052 Malicious code in umbriel-zenobia-sedna-odin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68b10880c1028577aca2324bcb02cb17d6dcafcf9da7aade9173f0cd6991bed7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189116 Malicious code in redshift-sagitta-geodynamo-planckscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49684d2254b23b90d0b51b5811cfe71ac5584f0a16d1e85b69e4a0c3b4b84dae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185951 Malicious code in bunyan-resonance-mensa-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a65863ee55838a0a6002f037f8899a14e638e0c1328dce784f74dfa7763be464 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188466 Malicious code in orbit-library-blueshift-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ebdf3d655aead94a3e9f83afb5c3ff14cb54c3f368930deb2544037a51e40c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185459 Malicious code in antares-airbnb-cryonics-ionosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f462ff51cb6b5bf930c6332a8c3f2689d11ec2a616d8e008a83cd2b2d4dd667c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188056 Malicious code in mira-apex-lint-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c6ef9b3af85b23ae480e1b74e397be16eca2e4c1a02bd4bc8da7f5925457757 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in aquarius-jsonp-technocracy-bulma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ad13a1237202f35a96aa28cc0e5f19e2695115dc612673306cb0f2cb530f758 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in farout-hydrogeology-juno-browserify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c08452e7565cb4869c01bdc75de3e09a2f27a9b0d6a9ed83d2407febefd2542e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in apex-titan-babel-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a01730205c12d694b2acae4ea9b3af03584b9f34e2f92fab62e45846ac5136fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kuiperbelt-phoebe-native-abiogenesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 122eb22cab163884f685d1a1578fafc9f993fe54329e6865523df977f6e5c050 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in futurology-arcturus-saturnology-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cee2cbdc2bc3dff01e44b79762d6c94d9ca914096274d79ac432f730d252e8f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eventhoriz-event-planckscale-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a969531dc342a3106319fd93ac645317db9acde1778df1db5647cfd186fda89 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in selenium-dotenv-parse-variables-gacrux-vega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eabd6b3fed5bae4e1756089c92269eedb044ff497d1eed1b91637aec3bc9a872 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in perturbation-blaze-singularity-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71d94ee357e591d02062c95c64888251cbd977c18af9279759332c2d7380f162 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in helmet-geochronology-rigel-sails (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d371d95824a99bc7c0274912a47abb83388ede4bef9957fd5ccc6581349b5988 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187308 Malicious code in heka-puppeteer-phoebe-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 274b0153c42d4b1db33abc0d693e2dff67d8ffbd4ac59765727dbf9d7991c87c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in stop-auth-epigenetics-neutronstar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d97778258cae0aa68e642d04d7a813ecbb7fe5274fe3d46b749e45ffebf87170 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sed-sed-link-data-root (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ccc8b20dfaf048c261a0380b71cf6a30fbead7edbc4958b753a86208b3b9e4c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...