MAL-2025-186081 Malicious code in chai-mesosphere-astro-postgres (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71f500d392e79b09d20edac037fb631418c2a0f9db9f0dc9a1e9e0a350f6138b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188552 Malicious code in parallax-chakra-ui-cybernetics-unuk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3dc8a5105d982a9f1cce71004505af3c846f385a2b34a35bd91283b0aaf5c9ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190116 Malicious code in ursa-readable-astrophysics-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc80f1b9c5c521714bd2e80e2a6b16e345cc954db76ce53bf0af5041f30f670b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189578 Malicious code in socketio-elara-europa-dotenv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 225bb3e548d67feeafaf0b3128b6664fe27c2d00f7626f199697d9775e813e54 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186734 Malicious code in enceladus-module-firebase-quantum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 573f7098a653cd898218b7f6aa6ce36b04be14f870311aa55afedddaf307f382 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186247 Malicious code in commitlint-chalk-neptune-auriga (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b475ac7ac71842a68d453cdd91b991e9c197bcdeaa1c1e63eabe9242691e332 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190479 Malicious code in zeta-lambda-abstract-eta-secure (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b820d228c75228585ef00e24bee4183f5a0dff3ec86ddc4b9cc4727395b97ed5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187640 Malicious code in jupiter-aether-markdown-pdf-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3047528b04a36dcb7ded333eafd8a31b11d90bc1926d32a82ccd3036dbbf7120 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189361 Malicious code in saturnology-enceladus-jest-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c71ddba711570c0f93b560b77dc589e118eafa0301b4b1d647ba6cc1e251c4a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188984 Malicious code in puppeteer-rocket-bioinformatics-elektra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b951132b96da10142462ea444c50d30aef2965745f67f0b123c553520f7c232 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190158 Malicious code in virgo-framework-dependencies-firebase (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0409c65db6f8bd311bf6cb439379b2c52dc1f8fc0a7ab975a69106943fe4e47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188301 Malicious code in node-awk-resolve-dog-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb1468df818feeb3957cd3d617fb7772a20f5a04b3a5b7508a13d5e6f0396452 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186493 Malicious code in data-virtualize-cluster-view-phi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 936ecc613606a259a3d77f4c7386303bb0f2eed7f53fc811c049c825c25778a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189819 Malicious code in tau-moon-scale-private-analyze (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7e39b6af5aa0b6b25d8b7e6b8d55595b0aa3c3e86f6689b8c787559f5ca865a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188128 Malicious code in morgan-readable-auriga-promise (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff939728ea7fa25c81887369da0440398d003a2c1acce70f1b5acf9dc29e82dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189142 Malicious code in rehype-darkenergy-neptune-taphonomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff8e7dec04b1f7848c420cbc1d806bb0e2aaf9933831e68559c22c7c39a63051 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187047 Malicious code in framework-rimraf-buffer-csrf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4fd7bd0d93981950b7dfc97b285205d98122fbf996356148515702794779a01a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186204 Malicious code in colors-gravity-cosmiconfig-zephyr (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ad652910bd8340554c47a71c55c251dc830c3fa3917077d4c05d03874f5442e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188008 Malicious code in metalsmith-json-husky-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 478b97c7a91f7c4306ed3e704e7d987f5ad1bfcf878a6b3f756ab08441f24198 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186013 Malicious code in cassini-html-webpack-plugin-loglevel-jest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c9033f1763d5ba00b031a7c88ae9daa1fa6d813e089bdadca8c7150998d3917 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...