MAL-2025-188993 Malicious code in quantum-child-process-vulcan-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db5c7c674775a7060b2695cecbde40c0352fea9feb3cd9e5e0c26845c229e764 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187227 Malicious code in grep-dog-function-stub-tree (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a9964b36e487f33b9a7626a28875f4f88bd869943c453cbc0d0f5c2317ec6b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188796 Malicious code in prettier-json-publish-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3c227b49ee21c7585211e16c411530204bd43403fecd781aacd0227c4f241de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188123 Malicious code in moon-unix-meta-process-kernel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 432d18ccf99d5d85dffa21aae798b7ec0ce7b7df8d0070f8e8d4c477f92b2037 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189604 Malicious code in spectron-commitizen-server-jwt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f5520a0221162a9daff8f9fc7fd1859cb9e5017d1fa3d3de33024e017fc173a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189117 Malicious code in refactor-cat-epsilon-interface-monitor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 936aecd5ce3be34ebc0072e78c7c6dce28d37fa9462635513930d07f7ba9df73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186720 Malicious code in emulate-catch-file-mu-parse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 780b4f9548afe60317b667414bbc56a8f0601ac37ed12885df88706ecec718ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187002 Malicious code in float-rain-finally-yaml-air (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9e8dd6638a0a74e6001d7a9336737e6f0567173b451b5a897e4d9c0acb68406 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190012 Malicious code in try-signal-lambda-execute-kernel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff58345af7f94838fe702630b47bf18db37968f47a7626a391421cf46ad542f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190481 Malicious code in zeta-permission-beta-short-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 150e97326cd1d07028267b635aa4429aa6fd26cd6649457e7a1bcf41e904538c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186882 Malicious code in eventhoriz-perseus-semantic-ui-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36c8dfc94f09b2035ce23b897ae3ff76adb7eb115168d013c0bbd9b08398fa8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189022 Malicious code in quark-loopback-palynology-cypress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d40ef0f2be07d54e6e36d6b88eb13d24800f9598149a61a58a5a23014e5074d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186214 Malicious code in comet-cassini-stratigraphy-mensa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector feec7987471c96c90eddc25903afa8981be14519613bb15253dde49d844b22ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186262 Malicious code in compress-async-rho-boolean-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b47a72962d3c729d5d4253ec9d28d30df0480c577add110900f74126b32e3a6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186427 Malicious code in csv-aldebaran-biohacking-cluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4682194840be5b284736379d66a1361e2224ef9402500c3119e5691566cb4041 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187490 Malicious code in inquirer-resonance-stratosphere-zenobia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8045888615086dcf573d963c334214b9b8cb76ab93a54114cae959a94c16ed66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187342 Malicious code in hermes-child-process-apex-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a281ad403ce48fe80ffae106c96e750395afa994deaa511034c881291b3f006f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186110 Malicious code in changelog-gridsome-perseus-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 133334c5bcc682926745fc752255a3c1e4da48e8c1e07925a14d0f505ea7526d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188668 Malicious code in phoebe-borealis-vuepress-coronalmassejection (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deaa586f7a513b8036116d867f85c2889429e1affc2ab69c5e417d09987ff2ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187641 Malicious code in jupiter-fork-axios-magellan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d618233585daa02221533466a8b12423cd094f4adae74b7a5095bb9e211871f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...