MAL-2025-186684 Malicious code in eigenstate-auriga-module-chromedriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 939bce452be9f38f47bf7adba1f04636244fa890ff50cdd36a91f3c3e80598d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189169 Malicious code in remark-barnard-commitlint-loop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78fbc8f80c4eaa1b4e6c6d18faaabd90528b2cd1b8a5e7b7f6333164c23b83cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190479 Malicious code in zeta-lambda-abstract-eta-secure (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b820d228c75228585ef00e24bee4183f5a0dff3ec86ddc4b9cc4727395b97ed5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186618 Malicious code in dotenv-parse-variables-init-child-process-genomics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98640b4344bddcf7df3cfc9d3664fa0d315971b9d3d25520d63786b5a4be8e0c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186583 Malicious code in development-webdriver-mocha-leda-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4a10d7aad60a2f75190e5167927d0fc96964f474c27b6dcf3f2941dfef7a2ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188922 Malicious code in proxima-uglify-js-biomimicry-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6085fc2c81e721b45c04ee516ad7a516391cda5a680b8a0f5a453e4d561b21c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185407 Malicious code in airbnb-mensa-geochemistry-husky (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 461789ded976ec21d5ed453dba1ce5adf24b99d90b2a96b833566afddbb99068 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186678 Malicious code in eclipse-hercules-europa-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55c819411e05d0061457e9887c6906e3929d2896491c60dcced2f30818f4ef45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187403 Malicious code in hydra-publish-filament-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2aa39d2cf73e1508204d2e22e08291cfcfeb4fdecb5a627d7b869aca7ae494c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186105 Malicious code in chalk-stop-indus-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87bb8e1129a1d5a199fd42030542e91c8c409a534084d9519532cc4057e92cc4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188440 Malicious code in ophiuchus-eleventy-fornax-proxima (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea7cc30b90911528e01dcb680bc353ff0031fb1471b18f403c2b5f105dc1fda0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186326 Malicious code in corvus-vuepress-concurrently-elara (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e1561f44e67d0868f2fc1f6fbfb73bab11cce44a263ac47614b49c690b618d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189837 Malicious code in technocracy-spectron-webdriver-query-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb2891101bf48ef0852bf59f5f476ef38c2a245c931903bf6dc90cfc8aa75bd5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kiudt-acavog-fafiufug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8c0ebd2c1e6d9fcf3738cff65387dab6ad9671f71575a8d13a06f8491e6d571 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sonic-os-fsg (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2eb2804d4a5873bc9e8ee0777f62307adfd6418c91bf60e73b36f1aebb1e8a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184501 Malicious code in moki-nik-hifda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 841015a65836f87ce5ea72f85610a20eb210e7c5a523a9db09ee9b5024fb60ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184208 Malicious code in modasiv-kuvu-baiucaufabfiav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6edc14fab49fed3e58b84592fca12bd8127c215bcdc3671719ced49919b3cf8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in imodiov-kufi-coci (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73a73129b4de2ea0b739562ff7ae66d506d69e67d809287f1a08b03443f9d17a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in inda-fodja-gifaisugkda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e503e18d6cc0d9eb3fdef9ff461cad20fedcb0ba5e7b8471be3a214407e1eb58 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in itale-dci-rsyt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a3dab0253821d9107c30643975d3ab1d3a6a2141e3754aae290ff45a015a6c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...