MAL-2025-189201 Malicious code in resolvers-query-comet-radiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f32d247fb9e7fef3137c36bba9f109b99a98b0e64d2c7664eab01c964c650d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185798 Malicious code in betelgeuse-sadr-antd-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5533bbb97535e19e922a0da680df8685d27a569ab72e0b79de9398e24a13a406 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187966 Malicious code in meissa-duplex-request-install (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bc9a8d56bd914325daddf0f1c5c1d6a1d44632b799c474ae33e71c334883104 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186196 Malicious code in cold-bad-theta-epsilon-route (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b66a7b1ab047970e217725296ed95d83978425fefb0d1a3e970d4f2ff9996063 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185376 Malicious code in acamar-xenon-eslint-magellan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c66894e71892101c8dd7c29f71d32f135677cd05c77630b1a91fdc89c9a2f1d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189743 Malicious code in superagent-singularity-singularitarianism-vega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cbdaa1d54bbc61f1ea74857628bad1ed29b040508630d98c1a955535b5c8217 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187048 Malicious code in framework-triton-string-farout (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb411fea7c69a21a400b3efd4d901fb9e34e1151f1fe103fa76e85315c011e17 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187598 Malicious code in javascript-hyperion-quantumfoam-rate-limiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6466804ddc9d527efaec99e8aff724f89de4847020162e4808add42d0c5631b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189813 Malicious code in tardigrade-virgo-hologram-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ed42039e0d9b78e3cd59ebd720e24df16a2da59377b7c2fa98dada31223e78c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190209 Malicious code in vulcan-semantic-release-pino-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c72d9e409094829214238543e07bf97ca0de11f012ae732f970551021eb40d66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187659 Malicious code in kappa-notify-web-encrypt-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4adabf06362cf23d6c3eee9d92b084952fd8949a52f6b30a787608914698c108 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187859 Malicious code in long-new-report-analyze-permission (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a5911bc821953db265ad24e2c3eb594acbeef9e54cce5fe51e810fa1a656cbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186506 Malicious code in decompress-simple-lambda-container-meta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a56f01a80d1fe9a2a4e14344b3a37f67f649c9c2f15d90b3604f6dc5c138e22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188443 Malicious code in ophiuchus-sirius-biomimicry-loop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e45ce8844de7229c6e3b1f202362891d12e2560189c4b8bf013df80c7454030 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186195 Malicious code in code-report-cold-iota-root (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64bf5e8505918bd9d308b0badcac899a832317e13a323ffe00e5666a0329a5aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189635 Malicious code in sqlite-oauth-quito-graphql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07ca71d4114f8ae4468c127def1828c69d2b57565bf13761cb5938f72ffc59da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189720 Malicious code in subscription-carina-standard-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5455c58d2ffcda8ba397e17e3f37446b866f2f4c87d7c00a6e826723a7fbfa6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188562 Malicious code in parse-abstract-beta-rain-benchmark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e128fa56bacf336a1f2c8600398d70f2ab99bf6fb61db89b40ca95d960d06ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185400 Malicious code in air-easy-dog-float-interface (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5383247b85e0c729c376c538e98461587e02a8093897571bde55b8c251dcdfe9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188324 Malicious code in nodejs-cosmicweb-chakra-ui-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93a5092226cfdaec9107ff680820108c965f38859cd60ac2915fa0552cf83dbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...