MAL-2025-190308 Malicious code in weywot-wezen-bootes-nodemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95af838a5409ad46c803f49911e5142c4505a584392775561fc0e5b1eb266f01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185636 Malicious code in atlas-enif-enif-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e642c8c15cf82070e938eb9c499479431db8e332a15d25abacc3ec9fce5d914 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188912 Malicious code in proxima-farout-react-bootstrap-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8de6d79a1a73dfed48c1efc53d474df34853b6a3b421d85f3fc6e594822232de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188878 Malicious code in prosthetics-janus-cosmicray-spectron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bf23841069f26bd310036a3ee4214cbe31bba389517fbaaf7c661280e69a65c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189176 Malicious code in remark-halley-terser-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca6dfb854cfd17d5b06c05f8223eeb22c789a6217a138f953d0edd5bc0997597 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189265 Malicious code in rocket-vortex-nebula-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1cb509f13958f7a7b72ce609e2825f1e19061e7b2d65cce6416a6e965c065359 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187871 Malicious code in loopback-tethys-airbnb-typeorm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60d6bdf3ca5ad069fac43e653c3cfd87b18d8ce52579123fb4fff1063304695d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187389 Malicious code in hugo-wavefunction-dotenv-parse-variables-parallax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ecf14a07cd348f4aef4bf71dd063f333aee890c7b9fffa4af049cac1d997ef9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185619 Malicious code in async-graviton-webdriverio-quantum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adbeaeed465424e52a3a1c461e253d7aa23522c4d71e215bf651ce7fc5cf5a79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188336 Malicious code in nodemon-slides-frontend-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4161a9733ad0657a992b0e3b792993775b939fbc4452872a0be0abdc96d50eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185683 Malicious code in avior-backend-technocracy-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e4660f214d4b00c4b4abd3af9e79316c7f7c5a06984a4a7e9b4fde2a60140b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186679 Malicious code in eclipse-levels-lynx-nanotechnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e16a598e256c596a0ce072b0c9bc1946d67911157b58b0ad8cad82e607360b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188925 Malicious code in proxy-encode-cache-easy-delta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b71d7168ce33fa33d117ca3dfeb5107315620cdef1a12c36ec833ec3738c04d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189970 Malicious code in transform-version-sequelize-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e0b260696b6e01b16b95ea6411e5bdda668fb587ccda3c63e369cde6cd117d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188470 Malicious code in orbit-zenith-magellan-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ea800d34eda6ec15db396e27410644077e675f01e4972c0dff9cda67740ff49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188503 Malicious code in paleobotany-warp-less-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e503cf1f4b68ac4105f21495630d3b3ab9fa830d3e32df743899bc45a7467430 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188821 Malicious code in primatology-technosignature-magnetosphere-parcel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eeb9ab28fb0d25c1d31157674fadc3130df8137ade8adb06630447d3c3639e54 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187589 Malicious code in jasmine-karma-innercore-csrf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 203c72244b8153dbfc6ea87c52825b1a48e6cc1db0147ae09eecb408d18f79d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187766 Malicious code in levels-eris-ora-hydra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 396eb7d9acfb07e0b4d45bf71b3a83fb17f984b821fe561d455530ef55d0f946 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188183 Malicious code in native-quasar-middleware-cz-conventional-changelog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4925360eb023738a4b9a50e62ee394450cdd5775f18795b8fe6531ab3371729b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...