MAL-2025-189081 Malicious code in rate-limiter-callback-nebula-electron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53651fac56158fb1f188c86d46208153a283a6a4bc8f891f849d0f667396b922 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190271 Malicious code in webdriver-mocha-electron-cache-dione (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b60a8ea6352feda352b3af9ef5245e88e08670f5c2f15646528a2b2895c7f2f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188477 Malicious code in orogeny-fermion-mui-jovian (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1bb0406ac1f1bb4b98f3bc29d46c584b70dbc4b846a397cfe88fa1283c87da7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186585 Malicious code in dione-cressida-schema-spectron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b81a6fe4ab37e65dddb881aa4accd68c42bbcb8ccf04f2c82979b32cb35ccae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188754 Malicious code in plutology-release-it-despina-arcturus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52a749c6fc4371a3c2293723768a233f315f8ed6aed6c686b69a16951edb77c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189630 Malicious code in spinner-uranology-terser-astrophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da7f5234df5681f13b658fb2fabff25e4b06dd41215f41a2a1bdc11964a46de9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186582 Malicious code in development-warp-geoarchaeology-odin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c840035c07923c4175839d47e43684ea33f6cefb2879b9b69bc767d9eb50c71 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185937 Malicious code in bulma-titan-axios-ariel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aefa58ff6412b2a7d3639037d582e5057b746e53319c75443b3aeca613e7b575 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186465 Malicious code in daemon-function-throw-file-dog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5a73e261a4f17a185bcca6a3ab3abc503be436cc2631043966eea2b64c29a97 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188244 Malicious code in neuromorphic-nextjs-phenomic-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b223674405d5baf29428d173f297342b253c408e45a652429824e52c02bf2d83 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187937 Malicious code in markdown-relay-optimize-css-assets-webpack-plugin-neutrino (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 814d9c5cb9e62fb3014607e0cc8e6b132834d0f216d57d6a055d9aba26c110d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188072 Malicious code in miranda-gacrux-stratigraphy-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06412ef9850be1e7a1ccd8f1007f1b16b41bc66dcde0d734ed417f747e5780c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190061 Malicious code in unuk-chalk-proxima-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0ce5d6011d2ef1905085d1a8ee431dffae5c2a7086b8c43056a28deeedef0d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185801 Malicious code in big-data-shell-omega-reject (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1244a9ab9c9072bd2cac6a3da7e782a4d9ed85476bd01eef9825f23de4c7478f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188134 Malicious code in mu-slow-star-promise-eta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb9206eff6650a994f2c98e32fadd91c33b7fc08c2063ec41f3f3306a68044cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186952 Malicious code in fermion-thermosphere-hawkingradiation-astrophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab3f94d8bd92593a24f0fd0e58ac635815bd45cc2fe9e1bc8f8966b92314a08e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188810 Malicious code in prettier-stylelint-astrobiology-loopback-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6defb2c5feb096989f260b8521f3669e9671736f838b9e562297550bbb18bb7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187840 Malicious code in local-lyra-cli-rimraf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3d2ccdb241affe9f7c727dc834b0d859c9f62002f7ded63cd52e753247ab990 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188972 Malicious code in pulsar-mocha-saturnology-jupiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e9af36bde91252a42ee3406851e9f22162b169e8cd83b2d46b3e2ab72d99eba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188493 Malicious code in package-process-helios-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aeb81f40d3ff44ee4699781197daf1ed03b36c2de1caae9749443281acd3d14b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...