MAL-2025-142969 Malicious code in google-sagitta-nodejs-nightwatch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 338abc925116d84e0ecc7c1b0f9dda422e67c5ad6a11245fb5ce6333b89b3a63 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146933 Malicious code in quark-pipe-mocha-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00fbf13855675eb0f04555f377cf94b4bcc89c117c1b9e7a004ad4c3159c4c47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144282 Malicious code in leda-nodejs-nextjs-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8488e7f3eb1b0a423523519eca85887ecd6c04e408dbec4c05e2e936659200fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145578 Malicious code in nodejs-titan-thuban-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8539e22779886967de1cf80034d2581c2dec1fc51ee6b47274fac4b08eeb6a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144654 Malicious code in magellan-nodejs-upgrade-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7a287064aebd8dc02a43ccaea9def800416fdf41787c254c715a4c63df047f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145971 Malicious code in parcel-sedna-react-bootstrap-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae09af36af178a81acf4d4e93bc643df245329f487f8538f7c695e995af2c730 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146913 Malicious code in quantum-promise-phoenix-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83997c7f595e58fc0c9df6d3ab102a43b0ac4c98f777de56bcb403d0b92d078a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145694 Malicious code in nuxtjs-apollo-gulp-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af6597f351418457f4a298e75a760f4998e77546742ce0037ebdfd07297dda10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146533 Malicious code in private-halley-nodejs-subscription (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89a15a54cc1eb0ce2d148b3ff7677e250f4387a0900f4a6bdb4e0858a664f377 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147950 Malicious code in sirius-fork-nodejs-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c6c1bd831399d8c2b516a325a12d79cba13a091a76042525b7e1c1c6feb29e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145438 Malicious code in nightmare-indus-nodejs-xenos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04fd1cc37d46f1a1f057268f80ac023e3523d32064151e456dbf016869d8c97d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143133 Malicious code in halley-cosmiconfig-nodejs-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06dade96fb0e2431b0716ce1e1641fac7e05a2a2cad951c5e33772fc3cec2128 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146262 Malicious code in pipe-dynamo-nodejs-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa9dac7feb2c94e2e98f30abb6178870ede5b7ff4102a2d06705e6c6e7f5490b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141478 Malicious code in dagda-nodejs-magellan-mysql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 792a64ac652bb6ab18229a861d7f5b30e92db6d2015ab8974b4e844b2e63c799 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140052 Malicious code in blitz-nodejs-postcss-umbra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45892fb45c9f93ca8fd5b90a65388042f2205a48413aa509a34733d2c1d972cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142793 Malicious code in galaxy-nodejs-ultra-wasat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59f3668b7d034cfc50c80bd3571e04523f59d1da1eb4392fdf1be9e724ce1663 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145572 Malicious code in nodejs-mongoose-dotenv-mongoose (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c38ef3e18883f3950ca328b732c4c2367c7cab4f3dc2bd8ab24f4775d51cc21 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145567 Malicious code in nodejs-hydra-jest-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9932132f6d9bafb954b656330727089d6eb11d9a744fe3333e8dd7384105b5e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140426 Malicious code in carina-transport-nodejs-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9674ba3bb4b51d8d50b8bcffcf19428bbdce221fc44e026cbf3f7e6947c75775 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148468 Malicious code in taurus-exec-javascript-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cdedd5376e6fe1861b11be01534bfda0c690e573d66adc4218268940bdf545eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...