MAL-2025-186408 Malicious code in csrf-carina-technocracy-areology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9db0c04510fbe25f05f94fe0f96db201917b1ce0b47d780dffe69d15e1a1201f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187415 Malicious code in hyperion-postgres-eslint-config-warp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b260dcd289e1588d69c2094c68adf2469a9d1213fccfe6612787d31af1167bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187224 Malicious code in greatfilter-repository-on-proxima (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8993c23be3f620ea4cdf1b3d179ef47765d2d76f1f4247138a42102ea67ea949 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190240 Malicious code in water-catch-cloud-upsilon-java (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ee923d12f25e195265318063f9ca7aefda531762b20e5da248f7248ff39084f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186172 Malicious code in cloud-class-stack-xml-runtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 233273838b0bc9fcd5abb46cd15a57798f84aacac1be400324b3c6b7173ae244 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188054 Malicious code in minify-permission-xi-route-export (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b61768cd6c25dd7a0cdd37434af8d09fbbf3143127384b990e81de835efd08a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188535 Malicious code in paleontology-mensa-altair-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77a633c6b86cac2930385f3eebdca63ae10a81cf8d77661d33d82855cd92e570 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189237 Malicious code in rigel-markdown-pdf-jsonp-restart (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1bff23cd8057496204d56ef6a563c25287b1811afc993a576c7b38a7606534e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188144 Malicious code in mui-xerxes-proxima-cassini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1c12bceab74b6419a10feede58b31581319ad3c2259073f79ffd2d6f2445171 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190355 Malicious code in xanthus-dotenv-safe-markdownlint-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65059d3c138e66e932e624190cf09688f2f69178722bd6940b7cd7ebdb558347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186859 Malicious code in ethology-ophiuchus-slidev-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c2f40a4b4e432786056beb60a86f5a1aae0069cd01285d04f9d578da7fe9d95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187558 Malicious code in izar-string-command-neutronstar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dbcaeebf03806cb0ef5c609388515b241112b004e88e71aeee348b374f64a76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186986 Malicious code in finally-validate-spy-transpile-scale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9042f0ca03575eae11d95191fb56e4a493c9d9cc6f78b44ff5664df90a5eae0f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187451 Malicious code in index-gamma-authorize-deploy-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 855a93e5306676df25469d50536f602165b1a8e5b59b3116fe63ffd6dba16314 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187793 Malicious code in link-loopback-hydrogeology-gacrux (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da395659e113c0159b3a1ffa62f95566815334d185057840f3d59b3c5e74e71f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187342 Malicious code in hermes-child-process-apex-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a281ad403ce48fe80ffae106c96e750395afa994deaa511034c881291b3f006f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189725 Malicious code in subscription-playwright-public-carina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 701a8a346bf74a50513bb9a55b5b268f778f18a886f3f088e3fa641fb990991a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187750 Malicious code in less-cluster-soap-firebase (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47863fe4b497adc647bce8fd2ec2979fb05147e8a1705890e418fd3b97b51b6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189534 Malicious code in slidev-deimos-heka-warp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fb3bb833b59090c2273ee64229cc9bcec7d73e1125f4e4122edabdcb374d90f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186467 Malicious code in dagda-ablation-ganymede-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a403cd335f4f51180f5005355c2b51c318cce6d0910807f0b962298e25ee8ac4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...