MAL-2025-186064 Malicious code in centaurus-neptune-css-loader-lynx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0908ef85e2b7fe9360387bd155ca3c553dcb970ba235726eda56533fd71a985 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187593 Malicious code in java-simple-void-fork-sudo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a431fd38fe81d86e10d39de2b0de5f9e1d478535958d3b4f6dd4350bb47db014 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187678 Malicious code in kernel-stack-grep-zero-table (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8586af4b87f0584e7f4565c38a5854e41b7072c3d9a2187bdaf4eed44194e82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189948 Malicious code in toml-jwt-docusaurus-celeste (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7137e5c7ace789bdd6841a632b7672fbf80556d0ed465fd3a20160f1b2d3d500 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187282 Malicious code in hash-char-new-alert-sandbox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 157e9621c61fae908d1e7be8b87a7307a60fae9033b01116533f0b50fe64262d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190070 Malicious code in unuk-nightmare-antares-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f38776d03acc9e82c6b3df743584821904d23bca5d1ab5a0f7a0ab78345a3855 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185661 Malicious code in auth-pm2-xo-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60541e6f176099b0b6014c32803b87028642aab5dbdef63c049df0f8c28d8ca1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189465 Malicious code in server-publish-ultra-ultra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80a79a38e0a196ea73bb64460ddb5a414d0daca9ff3b5f70eb45ce4fc3959871 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185751 Malicious code in baryon-antares-leda-cosmicsilence (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf008fa0c59cf2a2efbee43d63306487f972657743488c6054ff09cbe33d202b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190442 Malicious code in yonder-webdriverio-lynx-blackhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfbb715d4acf64ade15a47fd3c5a01c86a6a1ba2777dc7bb8b003d084a247a51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188964 Malicious code in publish-zephyr-tethys-jwt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dddac6c7658d6fc3bba49d10ed2ca7d3f5baffeb4d7b34f7de85a3770e2a88ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189394 Malicious code in secure-big-user-unix-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58302a7110a1c0f90f3bedc311dc5eeda947f3da8ac2e2e1dd37e19aa2b0347e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188055 Malicious code in minify-report-compress-compress-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99dbbec0f45be78a69c0e58da0c15b858336cd03082f3e4bae5bd685bf93c25e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187508 Malicious code in interface-awk-balance-epsilon-orchestrate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05f2ce4e85cc2ec7f434ad7f50ef8d6c39c253afdf7a7a04aa4a3ff2d93178e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190018 Malicious code in typeorm-postcss-process-biomimicry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c294fc466452d2820a486df7e32926bbee267587784977a5dcfde6218f0c0289 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189031 Malicious code in quasar-helmet-metabolomics-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acc8a6683ea8ccf5185aeeb43f7d442aaceebb4a6daf47fbf4915551e5ce2f55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188325 Malicious code in nodejs-csrf-sagitta-materialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55b4a0d0f7ff3dd984df6f9575fd59892f7044b99a492bdad2834ae0362abd51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187881 Malicious code in luna-xanadu-aquarius-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbc41d7b808faaf60c42dff26f6f47331e3bd6a23a51389d3ae2a88c7c0f9c7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189135 Malicious code in regulus-nova-resolvers-spinner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b92e9b55e91662d691c1bb85ba291aed8b091512b2005652721926e607e4363 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189725 Malicious code in subscription-playwright-public-carina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 701a8a346bf74a50513bb9a55b5b268f778f18a886f3f088e3fa641fb990991a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...