MAL-2025-186825 Malicious code in error-error-authorize-phi-mock (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b340179d411fda452870d0f9f487b221dfa2c4ebd9f2f2e93457306569405e42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187332 Malicious code in hercules-config-juno-void (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f4cd30f00323af7b524f61b17219f21295d6d27272c1dc39765553c6d27266b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188814 Malicious code in primatology-algol-postgres-unuk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 013c6424d179894374a2287438b3d3e54683c76bd6bcfc312e41d2c1f7459f05 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188946 Malicious code in publish-antimatter-augmentedreality-hawkingradiation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0d5d6b123e34a8689a89de8c4284bac809a0af916cf5f51956e0bb8bcf35c67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187638 Malicious code in juno-saturnology-sass-loader-joviology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector beb54e9749d9d21998cf67910838ec70d40b9d045cee981abefd69fed26a290d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185976 Malicious code in callback-jekyll-public-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e37871c5d8d32001ecc33cfcef2b8297490b122f158b68496524289819179f33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189782 Malicious code in supervisor-slides-orbit-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89f9dbd94f494a24ef57e9ec19ecdf8c357feea71319d53b704f455240c03183 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188062 Malicious code in mira-pipe-stratigraphy-semantic-release (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a737e899eebfc93719ad05ec9c57d48a39e9ff003452bde12f51658c501679d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186193 Malicious code in code-code-old-reject-cat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c899170e707048f7a4cca5c47d5b69c5e973289a723f30a8f0ca015ae5d82005 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190173 Malicious code in visualize-object-xml-long-sigma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2adad1da1eb5a45ee27e59a75a9b902cf303eabc80616c3b102fbddc15b14ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190358 Malicious code in xanthus-redis-scripts-fomalhaut (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5378a4c2406d3bf5d4a642721349c3ebe3396f5805ea6a6298f597ae191792cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sequelize-ophiuchus-parcel-procyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f3fa16271461dc63fcaae96ca9ec7cfde5867ab6ac8758b77839076758c41ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in multiverse-terser-webpack-plugin-vulcan-redgiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3baa1735030fec28c869f9415dedd3770acbed82aa70c4034145b69388e3ca53 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in middleware-mini-css-extract-plugin-ignite-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f3e82122591102f60da59a1022fd9f2b71682cbab9b037920a755ef505cc80d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in soap-winston-thuban-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5884709882a0901b1904e76eb744c4c9941a1bd7fac9620ad40f74acc518a753 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in protoplanetarydisk-prettier-stylelint-jabbah-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fb0ec18ef13c4eba082ad93c59132fefce6e00204e10ea87e8e9685f5035651 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pegasus-filament-meteor-impulse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4aa9a3400f1241a8a8b6722778c946764f66a673ba27b0e9c822be836a418815 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in apex-postgres-procyon-zenobia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c0aeb02932f948ac72d778e30dc2a45eb788602e06dd414d7abcb985fc34e8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vuepress-apollo-kuiperbelt-hercules (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d4173383d800b1607f50cc0cf3319b90bfd620b0d00175aab6683c57b5f9471 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in transform-robotics-filament-orbit (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65dfde16dd768ac14d658dcc5d9aefd9d6e5e79e6df9a61fe8202c0c895d6480 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...