MAL-2025-187090 Malicious code in gamma-char-visualize-moon-daemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91808148516e73f132daced2f432b7c2f829ad7821d229f086fa5904c51042c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186407 Malicious code in csrf-callisto-hapi-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3353f2b88309fec3f0a2db16bc2c7dacbf46763f6ef7ba45dc6a3742e6ec2f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185560 Malicious code in ariel-geckodriver-stratosphere-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a930067f78c8674cc83229df11df28e5b8259de5f3f9d06c74b2688019a2db98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189595 Malicious code in spawn-exec-zenobia-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08d195fec77b588ee50726619249d1d77aacd06b4a03966370f3dee0c6edc02d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186258 Malicious code in compile-catch-gamma-encode-resolve (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b8545b272f2cc1d5247f5d8fc850fd0c53e182c3852a6ab567e2c4e0085d24b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188197 Malicious code in nebula-build-auth0-mui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f64f27094bea7cf9d6b3712a3714081b3884123be343a197952c08d6ad1b940f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187264 Malicious code in halley-bioinformatics-mui-venus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 662312aa6ad2beee5a2348e5ded7008cd22d42f7258a0e9670509dd2889d5910 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186754 Malicious code in enif-wavefunction-phoebe-kastra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5529fe0b8e93a9c6aca887f4acba242427e40e99e7c53ab28047e01d9aae23fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187011 Malicious code in forever-heka-polaris-elektra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 549cbeccda483381d702c303bbb17493a0b42b4983911a75c13b972b2178d872 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186931 Malicious code in express-terraforming-nucleosynthesis-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d58c13e8ab6630647d9a08c3b65040effac140f3a388762a6acd5eee532a1a66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188062 Malicious code in mira-pipe-stratigraphy-semantic-release (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a737e899eebfc93719ad05ec9c57d48a39e9ff003452bde12f51658c501679d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188939 Malicious code in public-jovian-solarnebula-lacerta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6544f3959ee43ea506834ae31150ce449031f41d3b92034116387d96bd7ddb8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187437 Malicious code in import-omega-long-cloud-gamma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26ef12eb1f77e3a9297d64051d6f96214b0bc858f070a63bfce67924055b48f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186467 Malicious code in dagda-ablation-ganymede-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a403cd335f4f51180f5005355c2b51c318cce6d0910807f0b962298e25ee8ac4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189725 Malicious code in subscription-playwright-public-carina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 701a8a346bf74a50513bb9a55b5b268f778f18a886f3f088e3fa641fb990991a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188827 Malicious code in private-enum-compress-upsilon-omega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 487ece3448f08f70c5b2da4031eff0deebbae4d9f304ce3cc6cd1338fefda9b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188898 Malicious code in protractor-farout-dorado-ariel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93341308d22b77fdf58c9111f2a073247b0d032db7fa33d572d4ca2176712eb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188593 Malicious code in pegasus-deneb-iota-mira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f09829ad648a30448e6909586b77ecb91a7d0c11ed07ed4042c386b13811abfd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190050 Malicious code in umbriel-spica-rate-limiter-auriga (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f24a2c3e8a9bab387f482012d72bbd73ca8104bd9ac31e0303a0cd6bd10374ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190158 Malicious code in virgo-framework-dependencies-firebase (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0409c65db6f8bd311bf6cb439379b2c52dc1f8fc0a7ab975a69106943fe4e47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...