MAL-2025-185636 Malicious code in atlas-enif-enif-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e642c8c15cf82070e938eb9c499479431db8e332a15d25abacc3ec9fce5d914 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185464 Malicious code in antares-cluster-ursa-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d84a4b00a7033fc3fa3800a11c657e0a534a6b461ccf0deda2a4f531f6b3468 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188686 Malicious code in photon-airbnb-virgo-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b57c86807e608c5b48c721b687275aad0c86c57fac80d36be0425e26e2fd6085 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188317 Malicious code in node-sass-ignite-dotenv-safe-neptunology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 050a9b781ee218eacda2b8a1c6548f9f3c967c5687f7deeee2c178a223eab73f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187337 Malicious code in hercules-local-ceres-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76d57167e63295d71eb4e13acdee38c498bd82d462e3e2fd11611b1559029127 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188470 Malicious code in orbit-zenith-magellan-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ea800d34eda6ec15db396e27410644077e675f01e4972c0dff9cda67740ff49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188878 Malicious code in prosthetics-janus-cosmicray-spectron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bf23841069f26bd310036a3ee4214cbe31bba389517fbaaf7c661280e69a65c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186527 Malicious code in delphinus-paleoclimatology-stream-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d619d01df637e0ed08a8b5b8184ba8a98b8c2e150823265edee3ebdfaf9a7c8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in chalk-cluster-nucleosynthesis-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2857e2f58732f4e737b5c115e17ca2ec106da05278448cb9beae381e8bcc151 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187589 Malicious code in jasmine-karma-innercore-csrf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 203c72244b8153dbfc6ea87c52825b1a48e6cc1db0147ae09eecb408d18f79d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in meteor-envconfig-quito-singularitarianism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db114004de8a873c258c341f245d4f56fec63e857a8166cbe06223c1d7447538 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lepton-sociobiology-duplex-nestjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53d7a23c064d52e0b75afba8f89a8c5e52998fb724077b5ba6c337b416414e3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in transpile-double-grep-book-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 553a60f9123c033f645a983384952a5b14109e549654cec24cd58a48befacbc4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nanotechnology-seismology-dotenv-parse-variables-darkenergy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7281d4ea4b4a674c44eb06ed7bbace36a580718444923d80db828d3aabbb64b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in biohacking-mysql-registry-levels (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab6f1e4115743e3db45e2533b59fd5833f36cf7431af3279462ca3a5e909f4ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186416 Malicious code in css-loader-mui-wasat-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e53cad67075a8415d525e1cafbcd4ef14fbb3971d78c9c0a1085f10f86fb472d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188459 Malicious code in optimize-uglify-cluster-string-refactor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9357c297db533d262818f4d94e063b4ca7a1de545294cd6a542cd3cfd595d937 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188503 Malicious code in paleobotany-warp-less-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e503cf1f4b68ac4105f21495630d3b3ab9fa830d3e32df743899bc45a7467430 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186149 Malicious code in chromedriver-json-polaris-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ef32861229671cc069a228322d0a6b1db62d689ae18e79f73f60ba5d10f87ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188489 Malicious code in outercore-sync-fornax-lightyear (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9e2e853eda7b0af152340f61eb4696e8f76559b416699655d34aa888bfc5f7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...