MAL-2025-187718 Malicious code in lacerta-ceres-jwt-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e9ef158e3d8954448aae52a5a567e27d1ce378b34dfd354ba3f163720c80229 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185436 Malicious code in alphard-biohacking-areology-kardashevscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 285400694813ff1ec33716d7a4f6d913baec9c2facd09a917816e0128598419c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187814 Malicious code in lint-staged-javascript-jwt-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cad43193b55e96d7ea3cd1d436ee7ac5623f0f72367cc583e53d0e57d1fbc61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190038 Malicious code in umbra-iota-graphql-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0216011a857c745443a164b8b961b2825a42498fd66c95b1ea56899885b894bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186938 Malicious code in farout-enceladus-magellan-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f03292d746272f6367ea408c0c0087fee9c3da9085941219a55a63bf3705e7e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189243 Malicious code in rimraf-isostasy-algol-paleoanthropology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3481301405182aeda1f115cbdd839ab65c80a8048007b504458f4df9b948c27f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189055 Malicious code in radiant-express-sync-tachyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc11ed6a8c3867ed71199224db53e25c2338a7f38da642038050bbef32d06101 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188637 Malicious code in perseus-xenon-grus-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3dba22527ed8f27d29b6a277c13c56373df6604a117eb21a0e723a31111238f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187982 Malicious code in mensa-spectron-webdriver-prettier-stylelint-zenobia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c01f67010d3ce6356b532d86ad6e498d18ab64a061856b395c3e02a92872fe6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187257 Malicious code in gulp-yildun-lacerta-webpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76a274bdb3d2616b5e76f058c31ebcdd115b7a1c639d4bd9c4736f68f31c0c47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187642 Malicious code in jupiter-scripts-html-webpack-plugin-blitz (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31eee506ff144bca2954b06b2cc81c5b33023ff8cff1b6cc66e7722a2f83da7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188260 Malicious code in new-transpile-alpha-log-proxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bc8fc5b7728dce5530f80ccd313b6a0d4a003f8c1b9ef1a197bbeaa964fecf4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190314 Malicious code in wezen-mutation-ora-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 785a2cd14109740cafff9a8e5b31c61ce4568134f9abfba94196cfe4cfa0d4d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186957 Malicious code in fetch-blackhole-framework-apollo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca87a7690c36b00d254fba308c33d5b8f5b33b233dd068fd9d21ce353684569f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189184 Malicious code in report-thread-benchmark-good-fork (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5572aa52a9142ab052da985144ef50687e5e330598649ddbf7ffbb3ebd7b16fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189986 Malicious code in transport-registry-slidev-upgrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2660007516964d3692e02aabbe87172c23d0b68035f75d6dfe2d597e17f4948a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185593 Malicious code in astrobiology-sedna-archaeogenetics-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3df4d0495e148fbcdcc1cda0675903dbfcb6d71102f2cf4a590110f50a21230d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188672 Malicious code in phoebe-holography-deimos-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f786ef6f1326d79ed74a82e68991e790daceb5da183862a7f8406b1c60880be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189766 Malicious code in supernova-hyperion-tailwindcss-optimize-css-assets-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f2ef4131d23bf5c2293362acd0d6a0d7dbe8c4af28eb05c78cebe4affa6570c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190161 Malicious code in virtualize-cache-cloud-cat-slow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f9eab5d5a3bb370cb101f7ee9bb7fc97ee9ff9c07c7e0182e1d89cb76688156 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...