MAL-2025-147843 Malicious code in semantic-ui-convict-centaurus-husky (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 177cb7690e3257e51d0d35be4fdaf3f3035da7d9eb4de02ddd3373e58cb79f5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139637 Malicious code in async-sedna-prompts-less-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1eb88c2f8971fe4760ed74b9feeaace97081beccb982086fb14a92bb504a614c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144964 Malicious code in middleware-schema-venus-solis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93c9d42a35eecf79615d3e6a383a4660f2e51cc22fd1bb17616a609764d1b1c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142117 Malicious code in equinox-centauri-lacerta-callisto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0af7e42dd6ecc2d5e444e441dbe9d246c94856bc0fdf210e3b3ba99c7d462551 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148700 Malicious code in toml-aurora-bulma-fomalhaut (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 746bfe10c7a977f7721587119712a709e020fe06e8411f424c7edf64978ee588 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145831 Malicious code in ophiuchus-ophiuchus-hydra-yakutsk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47788e2971989ebfda1e3e06af9e81bcdc202bc958dd8727b5529b76fd1c5c95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141899 Malicious code in electron-builder-cz-conventional-changelog-markdown-pdf-rigel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a391ad765701a0afcc4bd8a62b5e4756a8273e7459830e66eed6cdd93cd2226 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144851 Malicious code in mensa-foundation-apex-dione (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ee5be0fc327e8e38982be98ae04183db050f3f4b08c7cc0af9727c9c2239019 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144494 Malicious code in local-prompts-webdriver-mocha-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8fe2d138e30dcee8ced95d5d531d2a68c932e8f629abbd4f8a4be48c7e1f521e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140523 Malicious code in centauri-achernar-xo-mui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a12a3d9edd9de56818674de53b88391cd2453fe22b06576d063f3b92e289a5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147564 Malicious code in sadr-jest-tool-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 925b1ba67d5b197bf2456562535ef44ea74362f49ab6741457c03efadb057eed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141203 Malicious code in cosmos-commitizen-quito-orbit (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d396766edb0e28e3c059fe2e8744a122fa7919dcec485819019662e51aa0af36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145346 Malicious code in nebula-mdx-polaris-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b597abbb8f843368a4693e7ff646c15e6d201318b0ac904a36d5fd327456cd0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145439 Malicious code in nightmare-janus-europa-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 103b72686f6c75739969098184b39eab91f66b52806609e70c348daa79d310cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141523 Malicious code in delphinus-leda-polaris-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f6c18328bd4bdbf2c3bc3fc6cd547b636261ffdd43a67ce494a8b2953a26355 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144561 Malicious code in loopback-readable-meissa-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a2117bd95d718c11d1d7d6fc5d2cb578836a47b121782b374e510f1375c7c4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145996 Malicious code in pavo-dotenv-safe-cosmos-cordelia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 716d370389a73f5f2d8bb1d652817fcd01c99cb04fdd4add1575b54b2c1d2d61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149672 Malicious code in xenon-xenos-sadr-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8462fcddb73bf27d7bcabb1adc1a6ab4a89bb78f09ca7930c977f334739514f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146193 Malicious code in phoenix-cypress-bootstrap-webdriverio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a728232962e524201812cf8b81e1af61d6b898e4d49532881d086be26173b26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148615 Malicious code in tethys-cypress-spectron-titan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 988f5b93fcef7a82e01b3fd236a72124b874972ae27458fcb2eabd14f7bb9eb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...