MAL-2025-189592 Malicious code in solis-troposphere-slides-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c03d4a07f458509a749319fab250192b4c3408f165b5865649842156cc6e3e02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187116 Malicious code in ganymede-warp-astrochemistry-jabbah (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 647b20049a1713f442e3534e7043dc9015c74523dcd965708c39cdd9ec112639 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188598 Malicious code in pegasus-mui-dactyl-terser (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a0679388624378e5407482bc78a5f6cf2643b9db492ccb69df51e7e6c4a27ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186388 Malicious code in crust-mui-development-norma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66b16dfeb9cbb104d60dfcaa311925c95ada246aa8e45fc1c2e109c04f8e8b39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185749 Malicious code in barnard-perseus-comet-chromedriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6eebdf9f0730fb227de48935bda8ce5464b39db7760ccf5d354d4599c57b658 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187924 Malicious code in markdown-dotenv-whitedwarf-decoherence (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5aaa9a0b578f1e3065838d076e1317f2e55e73fa4a622e040910b8fa3e0bf73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186938 Malicious code in farout-enceladus-magellan-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f03292d746272f6367ea408c0c0087fee9c3da9085941219a55a63bf3705e7e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186279 Malicious code in config-pipe-promise-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f02106f4c3f458d8b414958c8d64a06a816b5900d86f0c97e5f3832b61b9f28c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186370 Malicious code in cressida-prettier-plugin-markdown-pulsar-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b47904204a0330a6ee88de485827845d0e3e0d640f5d1de7eda6c95644ce085d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187521 Malicious code in io-gulp-apollo-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da8d41017f6e1f3ead37a2a51382ab373e4ef1361ea5981924ff463f050d0659 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188521 Malicious code in paleoecology-tardigrade-express-rocket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab02d785c1af544c7c0c174e3a90bdc47d16a2f816fbd258d3b669ccf44e59ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190403 Malicious code in xo-csrf-radiant-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94c1bd2a4a7e5e0d89c6e97c3243f89b4b6801a28f85c0a3bb946840fa5efd60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187367 Malicious code in holography-development-nightmare-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a7391f770354c996f96ff917c11fa4926f5234d5852422d6f39e359d9aa7a89 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188489 Malicious code in outercore-sync-fornax-lightyear (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9e2e853eda7b0af152340f61eb4696e8f76559b416699655d34aa888bfc5f7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188672 Malicious code in phoebe-holography-deimos-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f786ef6f1326d79ed74a82e68991e790daceb5da183862a7f8406b1c60880be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186619 Malicious code in dotenv-parse-variables-public-cosmiconfig-zenobia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9e2cf5e995e7be6217368c91ec8ecf853022838cc7a763cbcc73d49e0c23b00 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188732 Malicious code in planckscale-webpack-json-neptunology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1dac476c90bc256cd8261ff18ff844d1b911ddf79b4f68c7de94b528d89ddc48 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188171 Malicious code in nashira-dotenv-parse-variables-gulp-lynx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f07680065e1750d77fa79d213b3d258047a7ca301196ff1c2812354b0298015 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189628 Malicious code in spinner-rest-standard-writable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebdb152aca673463af38f743b1775bb01844887f70361930a578a2fcac67ff80 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188742 Malicious code in playwright-dotenv-parse-variables-parcel-less (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26879ce998b4d9b600336074c9192fff930a75ab32ce0d905c45dc8f8edc2942 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...