MAL-2025-187523 Malicious code in io-octans-taurus-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d08a561f7cad6fc8181a710ccbe3dc3c4893aba23442b6399408165dc7bee9f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188242 Malicious code in neuromorphic-corvus-rate-limiter-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8d42f67b16998e8372cfb22e1d1e99a0b3b90dff290d898c756114a21cddb5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186369 Malicious code in cressida-jwt-loglevel-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c579391a28b717cc3bab01d83cefe0a9573ccb0c4b8dee4c27e98fcb9b1adac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187613 Malicious code in jovian-postgres-webdriver-mocha-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ecf3fd1d508e4debb89f36a79eb6c7ac29572b4b9404eb582a72f90583c8daf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186399 Malicious code in cryovolcano-grus-ini-proxima (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd0a229347ff016f9d70393ed03e8a4a921a6e4c86a3a5603209a0d4bd75855e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189898 Malicious code in testcafe-miranda-electron-umbriel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6dc56bc034bb1eb4e4b4fd3fc8d7db620ba01d5807f3200c1c40cfe1f26c695 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189434 Malicious code in selenium-uranology-quantum-computing-framework (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3c7d510bcd6e5b1d50c17ee7d0dcae7d1d33c72605bee82ff84c4e5d80f049c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187815 Malicious code in lint-staged-lint-staged-auth-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03253bd76fedc24d55504b970d032ee47ad508a341ba8a5531490b0b9ae15ee3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186195 Malicious code in code-report-cold-iota-root (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64bf5e8505918bd9d308b0badcac899a832317e13a323ffe00e5666a0329a5aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185543 Malicious code in arcturus-fornax-thuban-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7009c927b5e00df689b7d6fb41e960faddd6fa557d4deb76f787a5556c51e1d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189460 Malicious code in server-carpo-carpo-cosmicray (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e13b35cab92cb87cd2a1275e1e555ba5cd6cc2d672f9915764840e26cd51e296 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185683 Malicious code in avior-backend-technocracy-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e4660f214d4b00c4b4abd3af9e79316c7f7c5a06984a4a7e9b4fde2a60140b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189495 Malicious code in signal-quick-proxy-data-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1253efdf52630a1193d5c52296772c271c6a20c35d7e2415885b3a9b7c6b940d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187772 Malicious code in library-archaeoastronomy-winston-spica (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbe3dcb39beccc420438542d11282f21171bd86c34f18ac5d213fcc6caa0eed6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187353 Malicious code in hexo-interstellarmedium-spinner-less (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2d056a5ff5a98aa34e68337b4e80e0fe26986ecc5cc6a0b376e60bbb1dac07d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186693 Malicious code in elara-express-babel-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab76e836e3b58249794cc58f0387e341cbcb4f07e8b2c7fcde64da9830361a30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185466 Malicious code in antares-iota-mysql-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6b745a215730f800ab23e41a575eb14af8482a22bb5b1a6db13350db681a93e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190314 Malicious code in wezen-mutation-ora-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 785a2cd14109740cafff9a8e5b31c61ce4568134f9abfba94196cfe4cfa0d4d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187725 Malicious code in lambda-daemon-cron-delta-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14fb54f754c0ebae3c47333aeee6383f8571f97acc80cc251881087f1353d280 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187389 Malicious code in hugo-wavefunction-dotenv-parse-variables-parallax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ecf14a07cd348f4aef4bf71dd063f333aee890c7b9fffa4af049cac1d997ef9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...