MAL-2025-187680 Malicious code in key-class-optimize-notify-fire (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d94bf43315a8c1c2893814e9659a334209b0e31030d5d9e792fbd92c4daf7c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189191 Malicious code in request-slidev-jest-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffa53dde998cd4d2b52cd4e664c246bbd1b8b32bb6fa3a6e19a44c1a2133d56f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miranda-leda-polaris-umbriel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a26ac025f1dd1deb89a7e6ba3f1fc6a89fca74f70a01f227da94833143abbc91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in juno-ichnology-dotenv-safe-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 661d5a221b43803caaf19c84e4206e725b644315b902ab5c3dd469c48cfcd724 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185670 Malicious code in authenticate-function-scale-cloud-socket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f528c4889d7cc48c0ecdd516f266fcb56461b67b151309f56a99d332024224d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185375 Malicious code in acamar-prettier-stylelint-run-script-hapi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0e822903612086e7d1e7ad54630715728a70c2ee625c2fdaa20967a642d7347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190372 Malicious code in xenon-graviton-gravity-pulsar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa5cd3c1a720ee5addd563d7161ef6e801e83409e8f804fd7355ef0ddb38c2fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187981 Malicious code in mensa-nightwatch-magnetosphere-oberon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4f3d740a50e16322629457256cea5c9793c5325fc9bd0a3635a7cf8f709ad94 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188967 Malicious code in pulsar-crust-acamar-technosignature (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca5355cbd68aac1da711412886e7e3a77b66c193fddd4cfb2ff2a0ed9e7726b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186210 Malicious code in colors-superflare-rigel-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0e903a3772257f571117e9c4c67e3181375d448e7529e39f970068e1f42f8e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189924 Malicious code in throw-async-object-public-integer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10aa1d7a7d6befddd3451e86b4c9d3ff5167678967dcb13fa5be0d980ffd643a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187876 Malicious code in luminescence-pino-superagent-axios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca44ea655f57b006cd3f79aed4d56a7f533cc6dc90375b078867d19ed03bf2b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185493 Malicious code in apex-soap-restart-nightwatch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0468f6b71f7d1589a508e656cb20a8746821763029ea2e63c948a1062b5e47bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189632 Malicious code in spy-sun-byte-debug-import (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94dcc9df0438390b12a282f8619d7e4c2c062b0442a82501ef29e1bbdbb48902 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187655 Malicious code in kappa-debug-lambda-daemon-upsilon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 340e7954b401130e0bef74fc509ab4a6fa4925e7038a4129c5923e84ef694790 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189344 Malicious code in sandbox-table-async-void-export (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72eae7b8d712aa5d5e83ef1d75048d703c8d4e2aecb113194cc338645618df7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186027 Malicious code in cat-air-xi-slow-visualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fefed3200aae9b03b2b7c8bfb5a00098ddc2ba15609c9a4286de08a7b8603e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sandbox-bash-authorize-hot-simulate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03dc660b6955606964bbd1a854d1ccdb491b52ee29cc056775e7f0a9e7c47d4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pino-avior-nightwatch-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e4d3ae1a586ca72cce709675ce0fa9bc7536fad5bcf6063f22852797657cdec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rollup-plugin-octans-fomalhaut-dependencies (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5af786cbe84ba8a4f35aa3f8afa89b09b9b2ad65ba56783efdc80335e5eb0fb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...