MAL-2025-189872 Malicious code in terser-webpack-plugin-centaurus-version-duplex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3c5c34ad44ac941803db664d6a785fac2fd342500558c1c26e98ba07c786178 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188582 Malicious code in passport-semantic-ui-miranda-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a277e6b110c6a4ddfff8bbead45f6d4b7425d4afb2864b265afba03f6b45bfc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186106 Malicious code in chalk-supercluster-repository-morgan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8308f3d7c65ad1b1cf899c50d43219245550c86abbd2cfe3f0fdc45785ecb881 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188608 Malicious code in pegasus-toml-neptune-nightwatch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a38a02d9893901cc369fb0349b356000666f6101f15a47c4d5ded7e4d7b56db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188515 Malicious code in paleoclimatology-outercore-neptune-nightmare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 766f9a07f9004f3a4cac014c091cbcd21e7fcbdbfe41f71c44aaea583bdbcc41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188524 Malicious code in paleomagnetism-dysonswarm-async-remark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb17dc6d228c7901b9fbd0e03461feb58c1ebda6de23469bbf3f76dbcbb588fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186012 Malicious code in cassini-hawkingradiation-rocket-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5253824e08b7a2567634e293db52907f34094d4adacb6b4ba2c609be5a522aab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188700 Malicious code in pino-cygnus-eris-odin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ccef55ac735774cbc37e3b16bec2ee4709f84fb719b589964c9976109baeea1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189085 Malicious code in rate-limiter-hyperion-pavo-protractor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0e5bad268f6fe6033218f2c4a2400977013b473187c738072f81c51a8f61998 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188126 Malicious code in morgan-planckscale-rollup-plugin-void (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4038564189cfc4df64c4d821d73f7186c042f00c151dcc46dd3e83c3e152b8cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189525 Malicious code in sirius-stop-umbra-spawn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e55a14a033b2c4791dbf3754b9d92b6fe7fba60595a0c5234a281f5b9d0c6b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185881 Malicious code in boolean-zeta-fire-omega-lambda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2cb7f8a6641e0545bddde60dbe3e670dbd50d4ad1135e2b340018411b59be59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187669 Malicious code in karma-spectron-parcel-aether (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca8ebfffe8a310711076f2d7bdc505e17c208634ea3a5ea03c8ebecf21c0544f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189230 Malicious code in rho-enum-secure-short-proxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc98f3a6c284cfc1f088763be06cffc4b095839b8639d60ab0dc326aba9d00a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187774 Malicious code in library-bellatrix-cli-cors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc1df04aae6a025d35e24d1c99352e79b2f30d9b4b6ff361adaaeeaa36618854 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189044 Malicious code in quick-info-star-new-import (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff8d2af4a7471f80995ba4591bc1d021217434d34977fb94879b5ed115d965a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189637 Malicious code in sqlite-winston-scripts-uninstall (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0cff5f26dee0c022bd5ce46d719a6d2583faae3414309a1c04c5ff377c8dea5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187063 Malicious code in fusion-gammarayburst-magnetosphere-child-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f8f77eac23d4f77219dc3dd38e3e9549d7347f9797f1f0094e9a201751610b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189533 Malicious code in slidev-airbnb-phoebe-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c147ec56a928418476ff97b2e80c13cc416a46f542363a1697c6b3d4e2801313 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186005 Malicious code in carpo-aurora-pegasus-sqlite (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 546ac582d924e3111b56cd0c197fa28379cc4fcd4edc8ea795336dd44a1bd430 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...