MAL-2025-188178 Malicious code in native-electron-builder-nashira-tachyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2c326aa33890289362406cb0f22eec8401d0b31d237121e8667b24eaa89de69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188592 Malicious code in pegasus-cache-passport-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dfec8b52297551b8c72f8706ea4a3412254e3aef5804f3ecfcd835d4237b6bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188025 Malicious code in meteor-hadron-hermes-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 406ee3b851ee1ae01cae0c7e1ae0e6a83e9ce50744299402f3c59a7ed7950003 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189044 Malicious code in quick-info-star-new-import (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff8d2af4a7471f80995ba4591bc1d021217434d34977fb94879b5ed115d965a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189260 Malicious code in rocket-graviton-aurora-blueshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 312704295e91a4e60e1f83792dc3966d9e28d04e1dde7d2905badea7db81b53b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187720 Malicious code in lacerta-paleobotany-convict-babel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be94532d5d7ef97a39c714791cc31d17cd747e52793d5361d81af4e284e2b3f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185766 Malicious code in bellatrix-command-testcafe-pino-pretty (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b703a2d20efa32ac0ae07b76175be8aa18b3f4ebfa944f7d27fafa977a66963 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189241 Malicious code in rimraf-betelgeuse-baryon-selenium (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3aec160d4f2115fef5d041bbd82fe690b367aa8d2bae4e68d3c473c1e8d806a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189924 Malicious code in throw-async-object-public-integer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10aa1d7a7d6befddd3451e86b4c9d3ff5167678967dcb13fa5be0d980ffd643a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189083 Malicious code in rate-limiter-express-iota-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 220e622d69063b2b40c1d75c8eae318670c90278bb98cfed61a265a93595e3db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185976 Malicious code in callback-jekyll-public-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e37871c5d8d32001ecc33cfcef2b8297490b122f158b68496524289819179f33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188197 Malicious code in nebula-build-auth0-mui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f64f27094bea7cf9d6b3712a3714081b3884123be343a197952c08d6ad1b940f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188196 Malicious code in nebula-await-paleoecology-grus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97b549d90567ac211cc5c3b056b1542850ce033df28ab52a5e0600e273d3a9dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189028 Malicious code in quasar-backend-altair-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35756d40a25a4bdb4052a566e3b66b63592849244ddafa63fe0a0df31a150e39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186755 Malicious code in enif-zooarchaeology-jovian-extremophile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12bfde11491b202a9ef0e7d59f6c037b33c4a718db17f3028ae3c1c5a5ed5e0e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189535 Malicious code in slidev-levels-install-jasmine (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09ab6a6244fda69cb617aec284412593aaf95900f028ed41c9805a71c843f185 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189514 Malicious code in sirius-darkenergy-selenium-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d8a88c1473d6d62a4e97fff41207584a1a760e37bfae59d36105075e63250f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in upgrade-async-forever-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75caed0ce1fb98070ff3b33974aacb7b1939cc7108213d2042323c1aa276575d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188431 Malicious code in oortcloud-css-minimizer-webpack-plugin-config-cryovolcano (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73f7585eeec78d135fc3f19ee9979e64089eeaea12fcd8b0be0c70ead619b829 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186305 Malicious code in cordelia-cors-lyra-accretion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 644f7a8a9d15a00959af84e0feba9ed8c935a3bc1ad53d9607a84119e0769181 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...