MAL-2025-188575 Malicious code in passport-deimos-isostasy-izar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c50fc22d47ee88f31e9929566ac91e5175399fdb5f383bf0b9612abb971d1ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185964 Malicious code in cache-mensa-leda-build (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56788cff5b913c5a179cd511025821a24df1bc1ca382527d1e91bf6fd180e3ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189745 Malicious code in superagent-zephyr-technosignature-passport (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c305022aa4a12b22ff2f1a9ba0045d87469a2ce7941b5bad815b80cc712d7750 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190047 Malicious code in umbriel-leda-pipe-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fbced70f13ff299b1492268d064d3da9078e4feed78b8d6225d5a2cb765ff9c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188568 Malicious code in parsec-build-nconf-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 595407dabb110959c49e151c6feeedb533e80313ec87ae8e34d80792d2dfd6e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187285 Malicious code in hash-test-interface-emulate-file (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f524f1afedfa738d87c851fd64489dd7316326988bad14dff7db8b77e321a265 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189942 Malicious code in titan-soap-request-framework (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4475336a5a70cb1e641daf750eece75d4e129c72b58ce76a12e6f8b504a07c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188333 Malicious code in nodemon-heka-wezen-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c295e465036b78eff0cd11ff9a8e7e1894c08d139ec57d8043ea93e45a02fdfe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186415 Malicious code in css-loader-iota-celeste-electron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1a6b13fa0fe3ce78be3d5056c24ebef487000d78e816da9cf71322e731db798 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186064 Malicious code in centaurus-neptune-css-loader-lynx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0908ef85e2b7fe9360387bd155ca3c553dcb970ba235726eda56533fd71a985 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188285 Malicious code in nightwatch-global-subduction-eslint-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6db5dca0a960c4affb7ee077ac8b2613cfe86d64f6224a89a259c25d733fcdf0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188367 Malicious code in nucleosynthesis-backend-local-foundation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12f0e575dd8081f33d306cedbbefbb2c089c82765433643badb89e418944ac93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189417 Malicious code in sedna-request-dysonswarm-enif (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe1b03cec1c5daf993196232116f24865c643b035dc6a9255cf8d2656074c012 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187407 Malicious code in hydrogeology-mesosphere-event-troposphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f812fa3ee6deb8d0b6857a56a2cb4fc70b77fbaea0dac5eb3f17d280be3a633 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185648 Malicious code in auriga-eslint-halley-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbb0bd6588a9174fc25cd49a2b2bb3fb8a2d06d58e3da4b7775a007a7ce02483 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186981 Malicious code in final-secure-epsilon-catch-book (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17e86d24f9e0aa24c62e5e4c9ec1038d73add02f6ef91a7fcf8a98ddf0a6de0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186943 Malicious code in farout-resolvers-photon-blazar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d346732ae56c4ef8f30df56341cab640ff20f6d532c8da3b5709ae69820d5261 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190127 Malicious code in user-reject-good-code-sed (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2032c72f458597a497d1a878ab45c562a45d885ad37a471669b14d2c004b3d68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186237 Malicious code in command-xo-module-antd (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd904aec9c3a6c08fbd9825ef68e0a13af99f7a6873004f2183b1f88c4f22d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189415 Malicious code in sedna-nova-readable-levels (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 519472d81a3bae325559686848d27604cacef6d3088adabf65c3453988faa0cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...