MAL-2025-186271 Malicious code in concurrently-scripts-plutology-nightmare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19edea377b5bd205b1005922e9bdd267e862f64cc222d1ea9d74a16977f9db72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188285 Malicious code in nightwatch-global-subduction-eslint-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6db5dca0a960c4affb7ee077ac8b2613cfe86d64f6224a89a259c25d733fcdf0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187541 Malicious code in iota-levels-foundation-solis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00c2b0af1eef0fba29bf292945385ea48af585baa02b34ea53e9ae76e24eca73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185495 Malicious code in apex-tool-colors-cz-conventional-changelog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89c62893645bd2284f60d2079d955465a378a688d945047e235e72710ec44a8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186949 Malicious code in fermion-geochronology-quito-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7a2f7cc81ec51b781fdd5edf0b82a3ff487dfdb67166aaac920eefd31e6d59e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189420 Malicious code in sedna-shelljs-tailwindcss-photon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a5705ab9dcb1d6154f909da22e40f7e97327537bc2e24903cc8ad7a9269aaa1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185973 Malicious code in callback-dynamo-lacerta-chakra-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6d300878b315b706f8527cf43747b70cde297845c6d57fd85b3a93e8b1d283a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189846 Malicious code in tectonophysics-farout-cordelia-darkenergy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4bf5bcf2afab2b331136836c91d71ee1f886593553e406a307a1708222d4af10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186009 Malicious code in carpo-release-it-oberon-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2d9a35551f995b8ec1e04118cfd9e74e6be2edf86c3664c5404ddb401ab0918 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189795 Malicious code in table-report-book-quick-delta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e0965416c019bc00c90cf5d20dd6fdd44aab3835008f974b0a821bce7fdd611 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186205 Malicious code in colors-nightwatch-antimatter-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45bbc42bfa0d26b381b4e233ad4e21cc124d0cba8b19be2bd2be1cf86e922a6b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190228 Malicious code in wasat-betelgeuse-mini-css-extract-plugin-cosmos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f72c3967bfa61a9dcf238d33c4284ce2f1f41d6b3f850a019d161f7672cf5834 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186312 Malicious code in coronalmassejection-express-stream-cryonics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cb7ccafe494f15bf19a6e786f7e944326261f0edda3cdef4b98fbdf9710c04f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189650 Malicious code in standard-saturnology-webpack-pm2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60f9b60bcea24bd37bf4185adb3a50def239cd1d9c430419b55ef63fb70068b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187402 Malicious code in hydra-markdown-pdf-resolvers-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3b797c75fdfd25ea211ed69e79105dbfa687f29b61dee7b5781593c49413254 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189465 Malicious code in server-publish-ultra-ultra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80a79a38e0a196ea73bb64460ddb5a414d0daca9ff3b5f70eb45ce4fc3959871 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188198 Malicious code in nebula-cosmochemistry-electron-cosmicsilence (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73c704ce8181f207b2a385dd35c0b6123c6d5424d76aed8a2fa42ab9befd4488 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185647 Malicious code in augmentedreality-version-wavefunction-spawn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2503586da8fb0802fa3367acc3e22e67b9d508d0ea7d14123f3ec4edda2e8203 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188629 Malicious code in perseus-odin-neptune-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3804f35db4608ce02bd81964c40f8470c16a58a2c8d957175bf051ee4826bd28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in carpo-hermes-firebase-nightmare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55a433a9de6a1f098e23e247b2bfaec929b7597a4f3db6f1ea78cb0d9eaeb64b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...