MAL-2025-186893 Malicious code in exec-virtualreality-wolf-paleoecology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb522e4144e64b1723fb48ee04de4216c3ae57a7bfecf7b921366d8b3bd5bc2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186202 Malicious code in cold-phi-cloud-cluster-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f0e9984087d6fc6265ee22bf94590da86323c7d97b5205d237579d0a5556bf1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187579 Malicious code in janus-radiant-avior-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3482009acb57d79c98b331584817b5b1aa0eebce9c890bfefe12f45ffe90242 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189297 Malicious code in runtime-promise-assert-async-serialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bc1992c047a8d0c1a09bf957a23e5dcf557eeb8778a576e311694f9098eac19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188610 Malicious code in permission-big-omega-alert-phi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector becde5edddf85b8ab06be7625942764cc139abc1be9d4826b8cc709bcad57c28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190144 Malicious code in version-pyxis-spawn-epimetheus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7caa9461ef60c5ea68137682e034dd31e821e161089f2d21e63422f8d9889d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188123 Malicious code in moon-unix-meta-process-kernel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 432d18ccf99d5d85dffa21aae798b7ec0ce7b7df8d0070f8e8d4c477f92b2037 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186390 Malicious code in crust-thuban-archaeogenetics-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1d77d5878eb84187eaac9705aa2e1f130b0c1a6d7d56c13ff36950c3de33028 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186579 Malicious code in development-playwright-stratosphere-parcel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71e0ceb6921987d11128b3d9468cfe3777ed868bbcb9f3c382500437fb7f12f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187009 Malicious code in forever-cygnus-postcss-jwt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89fd6949db8f73f60ad61fd46e85a491a3d296a9479c600d2a79f928c0d66e92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186611 Malicious code in dorado-spectron-webdriver-spectron-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d89c14e7aa074c70529c5ea2e78d695c2f8741dc72356cc92dcc4df097c7884 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187597 Malicious code in javascript-css-minimizer-webpack-plugin-geochronology-foundation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 541d9f2ae859b256fb3d8578c48df0d858a1f1fca17072d9018dfbb8b3c0c6eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188238 Malicious code in nestjs-css-loader-command-mensa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aadc9bae2c451c458228c585830c85a5ab63f5a358e31b3de37b61fa252b4550 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187897 Malicious code in magellan-augmentedreality-webdriver-mocha-blitz (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab10f2e6996aaa64585be8f1ccc8604e6d29c1836aa5cf29ec696ee0e297c364 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189995 Malicious code in tree-psi-air-moon-air (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83074f704eb4e4519a481ac7f001147d60931915820fa8b068b512c76f180ed4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188464 Malicious code in orbit-css-minimizer-webpack-plugin-paleontology-centaurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab7f5cc9d01824907a5d44dc771cb5aac82e0c1a99d9446c42589fadfa59dad2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187639 Malicious code in juno-uglify-js-tethys-thermochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca3b11671ecb29ff8f1e78656346b4fcd45de13ee2feb8648e6425fdce8d720c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187675 Malicious code in kaus-triton-sadr-aurora (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea9faf4f30b1aac05c7e7a00fe9b84e14833a19549318de6dae1371066e68ffd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189108 Malicious code in redis-corvus-transform-dependencies (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53578cb8707c6a8f4d8cf11e99a8d46d4bb1ee0c918484fb2167d78b26b8b3b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188887 Malicious code in protected-table-sanitize-secure-void (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b4e338052063daafd3f8c42a15cf174fb25f63b00be8905065df5cdac248357a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...