MAL-2025-187178 Malicious code in global-centauri-jabbah-husky (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e054df192acb5a503fc2b8fab8fe9e53bbb345b829640946de23c47d0fc60e7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186443 Malicious code in cygnus-umbra-webdriver-mocha-docusaurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 314812afef770b2c68933860419ecd93f198f59bd1b7fbef389f9ff3aeb0ab01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188867 Malicious code in promise-yonder-lint-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bcc683c63ed5e1e96a3f977f18154776f0344713ec0769fcb379dede9262bea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186427 Malicious code in csv-aldebaran-biohacking-cluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4682194840be5b284736379d66a1361e2224ef9402500c3119e5691566cb4041 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186889 Malicious code in exec-mira-puppeteer-warp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0de5d3575e186cbf2ae9d26ac63915739b790bf0fb98bb1ae5db1afc0e3336da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185390 Malicious code in aether-foundation-request-tectonophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffc9fd0a034150e047fd366ef04b684968fb67604112d8700999a30a191a84c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188136 Malicious code in mui-auth-betelgeuse-xo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0b2fd7a8c638947ae3bfc4c81fb4a2b89e7cee50538831189f80aab8974dcde This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185991 Malicious code in callisto-meissa-centaurus-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f8c63a0c53777fe89eea8eda0c1a23ede7780098a6b51851bf39db32c4c98f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188914 Malicious code in proxima-kronos-charon-membrane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72b83b5da130d0cc0ec2d6729beb3684e2dd6f215845318a3c6ce2d10550e0ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186998 Malicious code in flare-sirius-parallax-cross-env (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3a8559b0ef5d85b4d90c0f847ff6cee668e1afda6de3249cf424af6575f3a52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189375 Malicious code in schema-terser-prompts-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 029583d6bd02442384a67da12922a4a0daaac8b98c374339699e8fe7e844adcd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189642 Malicious code in standard-altair-izar-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7aa4728fd5bccd6fec6ad0f4459479b41c02571c837732ad3e92688a04eb9bf9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186451 Malicious code in cypress-technosignature-solarnebula-protractor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee5b6d2c365fa8597a05437b8cedda2feb5adf1dbce76e271afccd20f7f8e10a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187332 Malicious code in hercules-config-juno-void (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f4cd30f00323af7b524f61b17219f21295d6d27272c1dc39765553c6d27266b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188886 Malicious code in protected-reject-decrypt-bad-big (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dfcdebe8a06399cba0d551e3325ec3887aa38ca3c9716354f910f7f99bd5f24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188556 Malicious code in parcel-farout-webdriver-manager-sails (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0323de8abc57e066c52e4d4f9edbf96b4ea12374385abf4cf5c1c36196afff25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190295 Malicious code in websockets-hawkingradiation-redis-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 994bdbce332e280e57d34568b49bd87cad47f442aed60864ca334d072929e08d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190125 Malicious code in user-lambda-decompress-benchmark-omega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df1bdd5516102d254db4d781c94a6b7a174eb937188ea61c00e3590d7c38cbcc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188055 Malicious code in minify-report-compress-compress-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99dbbec0f45be78a69c0e58da0c15b858336cd03082f3e4bae5bd685bf93c25e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188069 Malicious code in miranda-elektra-quark-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 823c07d9bb654b431d7cbdff3c2d94d26c05a99b59b03ab6772eda870a5c37d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...