MAL-2025-186372 Malicious code in cressida-yakutsk-zephyr-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dae255b919a558810665528345442d46e7043d63ffb0951981037e0bc8c961d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185924 Malicious code in build-commitlint-config-angular-lithosphere-string (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60ab646784f3f17c42be291e7b9c338248f54998d51dac40404b1bedf5867e53 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189972 Malicious code in transhumanism-blueshift-thuban-geckodriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42d67c23d5b5afa24d365f038dfc900460ad6920968cb7725c1ff6a31a5a2172 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in biotechnology-planckscale-nightwatch-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c7aa96051f851c7bfc81fa4bac9bafae95f5bb654923765e79f66ccfd820ea4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186727 Malicious code in emulate-throw-root-meta-file (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 222842128022401db2657f4a22c7080f888c13de337235d91c1db8bde19cad82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187526 Malicious code in io-radiant-kinetic-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c3062fe4212f195fbdb0430f3df687e288bc65fe6c974ea700963c2c381fdce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185935 Malicious code in bulma-rate-limiter-nodemon-aurora (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 009a5f663c52773985c30c7de3050020ede21883b42f36c0dd75d76534b9b859 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188699 Malicious code in pino-avior-nightwatch-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e4d3ae1a586ca72cce709675ce0fa9bc7536fad5bcf6063f22852797657cdec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189806 Malicious code in taphonomy-phoebe-castor-terraforming (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46873e7112369098bff8350a1440a504a2cfa26a709a48971ac7beebbb5bdb2f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185611 Malicious code in async-buffer-cosmiconfig-aquarius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bba737275085236d631d085f7ea2af519c6a7de3107578c0603efd3f092802a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188570 Malicious code in parsec-oauth-jsonp-eslint-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e65d8b51f1ca029d90bb2f910e5f3d92bdc1573cc4f996ae4858417ff3dfd2b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189791 Malicious code in table-hash-long-delta-omicron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 642c3445ada7b4c226ff3f638cb16d21ec36b35258ed9a1fe2924547471199b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190011 Malicious code in try-phi-lambda-public-validate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f6bcc756a01c3ca9eba1d866d684677df2aef5dd2d72a7a333a92b7bbacde80 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189485 Malicious code in sigma-byte-minify-cache-float (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c6e70796053d1fa92a07825c71ff13fe758e72888f995c1ae5045570a6d76ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185986 Malicious code in callisto-enif-cryonics-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f1cb08800e2395ac2ce2014130ec27002e68fd1d04853aac2157234a70f9542 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187113 Malicious code in ganymede-style-loader-xanthus-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36a5f45d9564f44b2db677d8a064664c3950bbf58615506c9507134b1044b3ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188541 Malicious code in palynology-isostasy-protractor-non-blocking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3677114d3794d21b85f9a96da8349a3359349ad35b6401c29589feab1f24a9a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189632 Malicious code in spy-sun-byte-debug-import (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94dcc9df0438390b12a282f8619d7e4c2c062b0442a82501ef29e1bbdbb48902 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189618 Malicious code in spectroscopy-webdriver-manager-await-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd63e8f2ff15aafdf183c39b1a3af9623710f2abe9e62e6cf0138f4389f6a0ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188303 Malicious code in node-config-callisto-comet-eslint-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b5635651be491b5fb17da64d0134d450bb553bf6c11fca9bc7157a5541ba26b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...