MAL-2025-188563 Malicious code in parse-array-slow-emulate-notify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79730effee3d6d0c7142b05c594c736477c5c548260feef0b81f2fa621df42c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190469 Malicious code in zephyr-prettier-sequelize-callisto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8f33cc7656a725e03d077a064f3e7e9e32e71a10d7fff8cb27b483865200522 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190147 Malicious code in view-deploy-scale-promise-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96480d65642dc0564974939eafd6126129e7f8b4e9c3845b878bc9244ff62916 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188670 Malicious code in phoebe-cosmicweb-meteor-install (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fb63d19ba7cfb57e738cd006c9c4288fd17ceaa3b39d6a4fea1b3b1562678cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187128 Malicious code in geckodriver-nebula-spawn-apollo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e0f439f3314d535195f43a58fea27de3a38211dbd7367c379d737eb31a99b2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190016 Malicious code in typeorm-kuiperbelt-miranda-tachyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cec24c5ca0521ea9c00f2358b3fe70121647e459666b4b63da967a70a180982f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187110 Malicious code in ganymede-publish-development-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 978c79b7d18ea06f986d6e2fb7985646d5a51af15f00263077e92558383d6c22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189326 Malicious code in sagitta-wolf-barnard-geckodriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 087da970166c0f101f1d299c7a994960afe6bf59968564c9c7b8f32b29c733d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187459 Malicious code in indus-neptune-typeorm-io (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5516309892382b3fb0fe6dd7dffb02a9504ac82c70a818e30c46579076ffb483 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187785 Malicious code in lightyear-cors-quasar-procyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 429afdc097b789886b2f73a40a1eb7753fceba27a84af51e06977ae222b5f0a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188569 Malicious code in parsec-kaus-optimize-css-assets-webpack-plugin-triton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97de95755cec1310fe309f1de9501ac87d304da7024b581ecddb59c229de0c22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188553 Malicious code in parallax-chakra-ui-mantle-inquirer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5160f72010bf6f5762daca3a099c3a80bdc7ccb9da4832813a1a861b6daa7085 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187282 Malicious code in hash-char-new-alert-sandbox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 157e9621c61fae908d1e7be8b87a7307a60fae9033b01116533f0b50fe64262d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185725 Malicious code in backend-crust-cordelia-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9abfdf4b11861c28b5f846e1b02a001c90a9a855d5563ce213d97013e6a36817 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in proxy-meta-pi-theta-bad (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d262f7cb74cbc02a73246c1079e373c3cf5e367f400f9dcfb0c987786b01dc3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188945 Malicious code in publish-alphard-convict-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b33c2a363ef96b131f8808426949e15ed28221d6374dc4b5c021fcd973e62636 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185974 Malicious code in callback-elara-hadron-jekyll (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c5e131353d5f6106fa2496e00f7ad443ad3e792fa0a1d9faf3e536b245446df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189918 Malicious code in thread-compile-parse-decrypt-air (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a7146ef933c1aa178443b1e6366208057596a2447d96deb31dc0f893f501187 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189215 Malicious code in rest-paleomagnetism-eris-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e0bc402668138cfaf7a98c94602606b2e89444223aeb567e96a42bef52c285b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188688 Malicious code in photon-sedna-hugo-palynology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 691a529c360565b158507994620e6f1f9da55fab5873d69b8bacdc29bc0b557f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...