MAL-2025-189837 Malicious code in technocracy-spectron-webdriver-query-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb2891101bf48ef0852bf59f5f476ef38c2a245c931903bf6dc90cfc8aa75bd5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190056 Malicious code in unix-earth-zero-decrypt-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 104f65dbb8a50faf4807c98c86ddea4df1e228f34b5b687aacbe3f6286776b06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187128 Malicious code in geckodriver-nebula-spawn-apollo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e0f439f3314d535195f43a58fea27de3a38211dbd7367c379d737eb31a99b2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189057 Malicious code in radiant-nestjs-parcel-apex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e61d794783712ae79ac94f129279432d13a6897e7dd8913533fbd9b8ad83290b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187493 Malicious code in inquirer-winston-commitlint-cosmiconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8d8803b934bddaa10af678e2f1095520a0c5df75893b63ef2fb45b3564318c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186695 Malicious code in elara-jovian-dorado-biogeochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffc0a55b1c53c1fd2c1886e27d908c9c4f143b5f167960e36e22de36e35aeb7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187856 Malicious code in long-class-report-grep-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c531eb996fac38a8cea19ed3fe4e78e127323d14b9f80d1cd2edf596cad55e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188647 Malicious code in petrology-module-australis-apex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1aedf2a100eb1fc3c7c3a325af0c6969e95c447adbdebaba9a1c2b6f0b869ce3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187251 Malicious code in gulp-javascript-carpo-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83f3fb31d46de531e486584cf860923fbaef0e8a21f7f9233132af1ea5a5ebc4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189761 Malicious code in supernova-astrophysics-jekyll-webdriver-manager (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c46b2195c3e0992cb15bb7cbbf584a0b5e48b2b1dde2a44f4956181f8ca2dee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190306 Malicious code in weywot-wasat-galaxy-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d83b4069b0753c07d3c79bfddcd91d26290f269a708d2f97e47c1fa9605c067 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186932 Malicious code in extremophile-fornax-quasar-carpo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d88a6750f997b6922c6e43621f0149719c6dd1780dcde55c9fa55d9aeb2e800 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190336 Malicious code in winston-lint-staged-ganymede-parcel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 964fa62b6be534e55034d3bb600bcaab53ab3dfd3be346bd6d3534cd63246be6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189071 Malicious code in radiometric-nova-rocket-transport (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ca38aecb47598dcff305898e0ce7687de1ab15863e927bbeba1da96300fc7ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188528 Malicious code in paleomagnetism-nightmare-radiant-hologram (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40ebc12787559b7d7eef63fc5cd7c191164484a02a9e5d88f09f05d350422018 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187592 Malicious code in java-short-string-java-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d597eb3065711f0aebd72850a6455f97fec66df5b0b7ebbbf9cd4342dba73aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186567 Malicious code in despina-kastra-forever-supervisor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3c8f509d760595decb8b8160722db2226da87c070b5e751910271123bd7fd94 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189154 Malicious code in relay-dotenv-chai-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 135aac248520c4091ba591b4d2d36a84f16d5f524805d7e46429c91cd4936504 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187756 Malicious code in less-loader-orbit-outercore-graphql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f88ea120d028932403ef7118826301f3f3a684d48f6b20f4b3eb9894d104fc25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187978 Malicious code in membrane-kuiperbelt-cluster-remark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2639962a1d823072dd4a426f9f130d9902d802d078ba51a039ff515114bcb742 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...