MAL-2025-187498 Malicious code in install-geckodriver-blueshift-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2240b015dcaf28ec92b8a7042872a396aca384419b7482b994f0efd2493d68b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188403 Malicious code in odin-toml-element-ui-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5661962d1fadc577d8482aca57631a8e89fd2662290ed31824e2467b2c2a2ba1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189004 Malicious code in quantum-norma-canopus-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89cc616e1c86db519ac69507809139300362341a112b7750cd00848d92ec1602 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188459 Malicious code in optimize-uglify-cluster-string-refactor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9357c297db533d262818f4d94e063b4ca7a1de545294cd6a542cd3cfd595d937 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188180 Malicious code in native-galaxy-antares-global (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11b8bcfdfe7849b90d3c380667f517122a332cc8b4bb07a54ce638d98f18e1f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190106 Malicious code in ursa-eslint-gemini-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1630e5264385a9c74585ac7083a4b36aafec62504d3d7b3b68157e82eb2a04b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186416 Malicious code in css-loader-mui-wasat-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e53cad67075a8415d525e1cafbcd4ef14fbb3971d78c9c0a1085f10f86fb472d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190472 Malicious code in zephyr-yakutsk-update-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4056139ea2e6931e54f1dbb6be8565d9c94ad19a8e4cc44520c8df7a00ac25f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187592 Malicious code in java-short-string-java-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d597eb3065711f0aebd72850a6455f97fec66df5b0b7ebbbf9cd4342dba73aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186834 Malicious code in eslint-config-geckodriver-algol-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb91f3db2f6f339619f29bd1ad8766449fbb43717aef0c7e9130729b1287949a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186527 Malicious code in delphinus-paleoclimatology-stream-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d619d01df637e0ed08a8b5b8184ba8a98b8c2e150823265edee3ebdfaf9a7c8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190129 Malicious code in user-route-fast-easy-sigma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7773dddcfb7d81f96523f754ca91e75c1bba334c0c58daaa3e4263791ac88bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186749 Malicious code in enif-ceres-request-npm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdd13e00db1b0e02341cc37a68e8140e103a121804f1a8515d8b75918eb4511a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186976 Malicious code in file-sed-hash-xi-sed (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00d86519311520ca1a35df7f45ec5ff5bce54178c9eebfc1939026100ef211d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188566 Malicious code in parse-rho-wind-compress-simple (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfc74d0b4f7851739d57d20a63fb3e706a3d684a0ac314906182c64d39b1dfc4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190343 Malicious code in wolf-baryon-pino-phenomic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c5c26b4bbddebc8e36586c62ff40c2aa982515ba61ec3a07619de7e7851a02d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187081 Malicious code in gacrux-dorado-impulse-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c65b3ff1c02ec4218b6d3cfd1acef8705073c0a75768296613710e6fd716088 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187742 Malicious code in lepton-husky-phenomic-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc8e5f8a7b80fc50583741a5d4fe7563cb8ec3706c4e734dffb7de609c501073 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188317 Malicious code in node-sass-ignite-dotenv-safe-neptunology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 050a9b781ee218eacda2b8a1c6548f9f3c967c5687f7deeee2c178a223eab73f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187122 Malicious code in gatsby-fornax-nuxtjs-vuetify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17493a8c27f8742691d5fb50ff801a6a531114bb0524fe9605d6af16d32780de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...