MAL-2025-188339 Malicious code in non-blocking-luna-axios-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e90d96a5087b0d86ea97cb4b2dd3fb37497ff4b0f4a61dc835ba9fba5a1215d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190298 Malicious code in websockets-winston-neptune-ablation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 565a47c433c4528bb7ca882f19a72714292b446d620d3c6037f544a29bda1783 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186401 Malicious code in cryovolcano-transhumanism-scripts-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2466ddf2d47bc8e8dd38cee96db75b87faf0e74b2b09eba243961d988a7a2cd9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190351 Malicious code in xanadu-proxima-transport-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4aeb08505911268d5477af6771dde49e5f8b308294908a14422197c264ce684f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188612 Malicious code in permission-eta-float-gamma-psi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e5c3e216a75b80942fcf38fe810effc04077d1c549528efa5ffad2cd9b8f8f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186227 Malicious code in command-axios-asteroid-carina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 180631d019bab0da64cf4a5f147075f13b45f0a00baf1b63e034c9f47ebf1e78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186606 Malicious code in dorado-hexo-sqlite-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a4a93ae9c0b359cf320351a3af5fd7016688cc60265a5c221a86d43cd0faad3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185964 Malicious code in cache-mensa-leda-build (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56788cff5b913c5a179cd511025821a24df1bc1ca382527d1e91bf6fd180e3ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186356 Malicious code in cosmology-schema-morgan-canopus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ebbea8d78a833ae8f4cb8e6115ca30a7e0e39466a843e3dcb9fb00210b1fc8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187239 Malicious code in grunt-bellatrix-less-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a265433e400938b3a3824f9989743cc4d22f5b9a85ab90856ac06d2e29d757f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187443 Malicious code in impulse-eslint-config-zenobia-octans (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deb5c240efb3880d55b5185feb76739b337d22f572cbf7af950b4f7b7680179e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185449 Malicious code in analyze-boolean-pipe-import-epsilon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93d6af4eafe8bb6c343ca78255c86d63db6180291505a042e3bf2e432940f94a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188284 Malicious code in nightwatch-firebase-janus-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f114266d957185bc93c8b22586ca07de60a7351df40704e372b30ce491e652d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187655 Malicious code in kappa-debug-lambda-daemon-upsilon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 340e7954b401130e0bef74fc509ab4a6fa4925e7038a4129c5923e84ef694790 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187837 Malicious code in local-farout-transform-chai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38a1fc589c9e69dcd54aa44a6a36b0916df594fab1f9c3f35a75006d3629ab66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186525 Malicious code in delphinus-ganymede-sadr-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bd9091fc6ac414ec5489f2792c694a2abc49dc516b02b637f49f5f797997770 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189828 Malicious code in taurus-heliophysics-commitlint-config-angular-superposition (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3142a8b96d0c8015bd6d17f6e9038ce57ea590fb830bea588d1c9105ba3e48ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188160 Malicious code in mysql-fork-pavo-firebase (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 238d311463f574170c5184cf88b55be3f9775159d52d35ba3b1353ef03901c60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187002 Malicious code in float-rain-finally-yaml-air (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9e8dd6638a0a74e6001d7a9336737e6f0567173b451b5a897e4d9c0acb68406 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187035 Malicious code in fornax-phoebe-jabbah-xo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89ab6a4c8a169e333e9defa80910133b4b619a071f3e744ce182a3d24ec5ef6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...