MAL-2025-186276 Malicious code in config-elara-leda-nucleosynthesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f2123d7611a034d49ef6a64caa8bff9b92b21e5a41dade96f42aa0c7c85ccdc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189498 Malicious code in signal-view-stub-interface-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7a9622c3c20ac87c38f5359669f3932eede8e3ed5c4d883dfba799e45c25079 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185507 Malicious code in apollo-sirius-upgrade-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 307d698e058d64db78d856e908f0aa50afad6ccec3c90b86c573366d555dd8fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185429 Malicious code in algol-elektra-rollup-style-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e884f188f0ed525cbcd2add351774639fe52d4b08ffacb4abdbf7b7596483a09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188964 Malicious code in publish-zephyr-tethys-jwt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dddac6c7658d6fc3bba49d10ed2ca7d3f5baffeb4d7b34f7de85a3770e2a88ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188921 Malicious code in proxima-thermosphere-weywot-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2244dab451a96c625aa78d793fcb3ba1931ffe5080498587c46c6bbf7f5a3d62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188612 Malicious code in permission-eta-float-gamma-psi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e5c3e216a75b80942fcf38fe810effc04077d1c549528efa5ffad2cd9b8f8f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190465 Malicious code in zephyr-leda-procyon-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fe90ea46f9c1ef07ae94408ce10711a106d0376ef8a4fa2d56004aa48135a37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189951 Malicious code in toml-superflare-rollup-algol (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2095f2a643f3176f7194ca9b7fb58c358babba6c0b9e2607bb10894b52696ec0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189369 Malicious code in scale-deserialize-function-optimize-hot (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc14d89c9ce2065dbff31482a95cff1fcbe19a77c703a1f8a4e9da899b874f14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188962 Malicious code in publish-xanthus-cypress-redis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cddde1a52ce767fadb05cbd31671938c574d95abb54b2c3e13d2a133ea934da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188519 Malicious code in paleoecology-cygnus-jovian-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5500c81461efa90c81a2aa2a1ea4cf6fbcc0a115124d9bc58b2f794f4e2f6b4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188311 Malicious code in node-config-pulsar-buffer-luna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e8c0022a09dadf9f316bef3237889774793b25526950d9d077e09de84fbaa55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188377 Malicious code in nuxtjs-test-fornax-postgres (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06d5b29631fb2bda9c539656ce905f027cf1e1e09824995f998eb35c2ef8fde2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186603 Malicious code in dog-process-file-file-moon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4e1459e69ec028b22bba506edaaede14ac3a45a1b48d29ce754a8be9f0a3522 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188685 Malicious code in phoenix-perseus-mocha-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ab6606c12f1d8a31b4ffa60bdd8a08643e40c577af49e628586123bd9d36ae0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186630 Malicious code in double-benchmark-pipe-hash-virtualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3693bc7ca615b1cd5a5525161fc2c67df2038089b984d721e39eaf4b39dc51b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185370 Malicious code in acamar-child-process-oauth-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aecf9405e1356b230c3b5e02f074df3b4d1c15deed220a1ee0fa696389b7d321 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187727 Malicious code in lambda-transpile-gamma-omicron-resolve (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f99f0348d7e173dc7912d39e05ba519748d07e0d15a2ed0eb9e7b1a0fef1428 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188416 Malicious code in omicron-bundle-file-final-warn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6cd56b17c0b82597e1e036cd7fb05112f6c2cf312bf53a0bcad543dfd985bc4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...