MAL-2025-189653 Malicious code in star-earth-small-execute-decrypt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71714330271c58d2d5c06d8a1ef7ca0ee575d60552bc9bed163a8d19d031220b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188839 Malicious code in procyon-andromeda-configstore-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 785e4e375fc95922d8389ed7d245344faafc074033303af2c8e26d46a8b78313 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188530 Malicious code in paleomagnetism-process-rigel-ariel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 806c222b404c6835419bb2dc3e3292a0bfea544dc0e55b7579ef348d91329803 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185616 Malicious code in async-dotenv-pino-pretty-odin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c3d4a572f76bbbe274534a67699ee258acbbf21283e21f9c8957d006040376a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185703 Malicious code in awk-encode-good-byte-uglify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e4cca71a4491c633a2c7f274e3a868f88632b23381903b5fa7e387991ebc55b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189242 Malicious code in rimraf-centauri-loop-nightwatch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bd387d55005c58c55352182c18c3112abc00546ff906373d546d58e4201bc40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187513 Malicious code in interpret-deploy-omega-async-fire (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9548d951625cc682aa2b671f44bdb5b9bc083e3b6c50b33272d8daac848d51a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188284 Malicious code in nightwatch-firebase-janus-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f114266d957185bc93c8b22586ca07de60a7351df40704e372b30ce491e652d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186673 Malicious code in easy-parse-async-xi-analyze (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dd6435fb32b846e888bf4ec073cb1121ac3787e29184213f76f831bbf3095c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189026 Malicious code in quasar-astrophysics-less-paleontology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 796dd3f919acfff7b29424059d3447b656538e5e1af0de86e836fd39ed3ba4d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186142 Malicious code in child-process-charon-mui-on (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee5e948049c8cfee3a492e90195667a71b6c916914451d1fdfaa8ec56a48d7c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189729 Malicious code in sudo-reject-mu-proxy-fork (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71bd21ebc82601b1500c1ec0b38beaf261822f483579359312b433a31d3a139a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189206 Malicious code in resonance-centaurus-luna-interstellarmedium (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b55a8961749983bfb7cb0c1300d7c6479a6095c246495c0d96e0c71645daf08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185715 Malicious code in axios-neutrino-fomalhaut-perturbation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f428902c9048480558a598f879ec355d21f923763d3b297f190013b90c371cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189191 Malicious code in request-slidev-jest-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffa53dde998cd4d2b52cd4e664c246bbd1b8b32bb6fa3a6e19a44c1a2133d56f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185543 Malicious code in arcturus-fornax-thuban-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7009c927b5e00df689b7d6fb41e960faddd6fa557d4deb76f787a5556c51e1d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186610 Malicious code in dorado-slidev-hyperion-avior (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1d9b51963730a8f63d82b2a36879f53b58198545402e1f775c81363ba94df60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186963 Malicious code in figures-duplex-halley-vuetify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f15be67b84b88a559dde218c9060dcc3b407af67dfaf55e7bdaf84c10c90c62c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189549 Malicious code in small-validate-psi-import-stack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43d7b4de2fec94ecc3e64457296eee7bad6bf2f1adec37f073c15252035290d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189100 Malicious code in redgiant-cypress-mesosphere-technosignature (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7930495e498f951b678a425515b1e968f43a896afad015516602ba290771553 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...