MAL-2025-185701 Malicious code in await-throw-psi-simple-debug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 937c92f1846343ce1e7e08ff398c3ef8339757e31ea3f856fbedb5d32b508cf5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186706 Malicious code in electron-tool-nashira-gemini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33b3527ef543cd69dc1b34fa0d37ad7afefd89e8a81e1a3ee9587b8811cac440 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186584 Malicious code in development-xerxes-dagda-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7042445332cc153f5065a7dece3340b416923ec1504216b77f9ecb81566a7d5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187083 Malicious code in gacrux-figures-postcss-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ddff144498a159f4f0aa53d17350ae7278a0691307113dbcb07ad4f8a5671e0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186639 Malicious code in draco-gacrux-carpo-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e99af30e309e14cdab037f48e58b659c2e89b47c57ea0ca10d2d97b6c7f47586 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189743 Malicious code in superagent-singularity-singularitarianism-vega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cbdaa1d54bbc61f1ea74857628bad1ed29b040508630d98c1a955535b5c8217 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185986 Malicious code in callisto-enif-cryonics-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f1cb08800e2395ac2ce2014130ec27002e68fd1d04853aac2157234a70f9542 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186470 Malicious code in dagda-geckodriver-perturbation-geodynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1aa898dd9b0ecf67bf135b03027d809bf8a597128a8fb16ea32387a5fd838ff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190316 Malicious code in wezen-xerxes-vortex-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 946bf71ee36457170ee49ec45ec813f62e10c9a664b58f862c83f7a5a43465a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189419 Malicious code in sedna-semantic-release-meissa-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23de4acbd096d7b2e9443bc9c267dde65252e7ab561fffd7d05d00627a2595f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189740 Malicious code in superagent-parallax-winston-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f860c92e471ec066342177a2645ac806c9b9b887b46c1a7f803b41e3e78a5af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187146 Malicious code in genomics-lightyear-mesosphere-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1443676fd94c32ffc79df6aede4df75f935ca9d1bc99e7c99bdeb9e440ebdd1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187477 Malicious code in init-optimize-css-assets-webpack-plugin-nodejs-grus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70dc2863be0d9933feb9f50a9c64d52707a31a7128d733acb26dcaf70e489128 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189236 Malicious code in rigel-levels-taurus-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector daa91034c8b8b7eaefcabb701f38524d7daf0f7c5118a46df8eb3ede6cf5e30c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186278 Malicious code in config-ophiuchus-levels-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d00e2b33ecfe6efa1b745f3dc70eb10dfaf23b6cf9dd3ef2b8fa29f57ea8fd01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188872 Malicious code in prompts-meissa-lacerta-deneb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c10fd22419fb3d6e178c081f9d5255950af4238612ae142fa4a8d8b98ccd3ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186012 Malicious code in cassini-hawkingradiation-rocket-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5253824e08b7a2567634e293db52907f34094d4adacb6b4ba2c609be5a522aab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186343 Malicious code in cosmicweb-miranda-xerxes-uglify-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 689b4bd5f9f10e90e5f9194bbc308daef426c25ab1ef6f1682b3006735701711 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186867 Malicious code in europa-betelgeuse-scorpius-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a50946ca571f73528c6dca5878308799855e749c166dfcb9eef96d0c8dc0203d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189187 Malicious code in repository-repository-nconf-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba2212e917a4c02184ad8313ff8d6188faf06000f6bce4fcf156762a51f7d7b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...