MAL-2025-187846 Malicious code in log-info-good-promise-user (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72c03b63d7e6ec2e8f5732886871961885d3492ff65521a2d134fa374464187d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189404 Malicious code in sed-sed-link-data-root (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ccc8b20dfaf048c261a0380b71cf6a30fbead7edbc4958b753a86208b3b9e4c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188024 Malicious code in meteor-geochronology-element-ui-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b2fbd4a4d8c5dac51c3818c36571c2e2edb4ecd33469ce0e9a4d8cca5ce837d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186553 Malicious code in deneb-warp-nucleosynthesis-lepton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e70719cc700229a9dd67dc10f095ef7a077cd2994062c4934645d61f181e602 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189870 Malicious code in terser-webpack-plugin-andromeda-zenobia-pavo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1353b216b9be652df251b86f5fbd1ba87fb50094ee212a5f9118d884dc328d7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185750 Malicious code in barnard-soap-gravitationalwave-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99fb6bb311abe39715f83590bf71d33b3e1f29c30ebcd134a8d514362a9b9313 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189960 Malicious code in tool-webdriver-mocha-prettier-axios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0202e0c6d5116df45f3fbcb466f9f4469417db5a0a3a8c2d51725d491a76e674 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188392 Malicious code in octans-prompts-hyperion-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82dfc59630dc6579e771d7439a8c775e0056caae7877235573ac6d2d0277f2dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190041 Malicious code in umbra-octans-ablation-deneb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b8978bd923183b2f8c2adeb260b1beacf5596db8503a689fa02d4d665279a18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189717 Malicious code in sublimation-private-technosignature-futurology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b58f2f9903b4478824461b4968c1561d1e34226aa387f3206db9b75f9b05569f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188855 Malicious code in promise-compile-interface-benchmark-fire (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b306b5b7cc9339e9799edff3557952329fe0e2e2ea03105bd35bdc395d9f0202 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185623 Malicious code in async-kastra-archaeoastronomy-exobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7e414eb0afdd76c0390d3282431a6f56f9f3e4a0fbe0d9e603e669ee3c4c905 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188269 Malicious code in nextjs-shelljs-centaurus-singularity (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c55363b3a5905f100f53657d0b726caa73dfb097b64c18ebd0409751dc343854 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185681 Malicious code in authorize-signal-report-omicron-decode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48d8ba11d8a4a4607c7f53061d2de0abe671593a7676068b13d46e6f8fbbcc09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185484 Malicious code in antimatter-slidev-install-void (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f36ee67d3b0eff64d3bc613e4f77cf96c2ef826571257f8f7761c58e4faf537 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189538 Malicious code in slidev-resonance-farout-baryon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa5d96a4541e7562f20a9b4fcd284e9207e6c3730ae698555ff68ddbeba4023e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185909 Malicious code in brane-nashira-cluster-spawn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d95958810256e12bc1d81c9af029c889a3b720ed25cf4abef9c6a636340b635b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186139 Malicious code in chi-route-good-integer-grep (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdf3808047bfb574e402fb26150085e65281d4b7fcfa053f879b3931c17b6b39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186202 Malicious code in cold-phi-cloud-cluster-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f0e9984087d6fc6265ee22bf94590da86323c7d97b5205d237579d0a5556bf1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188693 Malicious code in pi-authenticate-cold-encrypt-alert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66ac2ec191304f45d1b827faa2c4ebc3b52fd5f3ba53ea48a1c5a28dafeae6e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...