MAL-2025-144912 Malicious code in meteor-google-jekyll-query (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1566a64039428cf1418221a4fac71c67096ccd2cc5667551d058f7fe3f6978c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149715 Malicious code in xerxes-public-eslint-plugin-quantum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd2d15fdd3e3f0c5477368f312b0532431a264e618e809ebbdf7474e454016b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144807 Malicious code in meissa-heka-wolf-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 303ff4a59d56a3eaa154f024f1234b48e7c42b6f0addcc29a1998dfc7c7cc0eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148784 Malicious code in transport-docusaurus-markdown-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71956465a4a6b68fe33a350a15f7ba73656070132aa30b36b370922f7dd325ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145285 Malicious code in native-backend-dotenv-safe-mongodb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 781f6d6927036e8ba7935aa91fcf468079fe5edef66c51944922fd9b13d986e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141951 Malicious code in elektra-ophiuchus-hermes-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 773d7cec7eba42a15eb28c5ff40c529ab002c4ab4f2a7b1085adc30aabf1a1b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142097 Malicious code in epimetheus-library-framework-mutation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8685869bd43d0c7731b440d9340f7d9cbbb1f65bd22794c61ba2fea0e098a68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145047 Malicious code in miranda-pino-pretty-janus-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 453d26f45ed78c5c4cd7d03280b37c3807f37e71e097ba1e130022966b51991b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149714 Malicious code in xerxes-playwright-quito-epimetheus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64cda26e6f69e769852c6b4cefd15c3800d63895934ebaabd557f880c5564f45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147793 Malicious code in sedna-sequelize-less-loader-rollup-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c21acb639bbf2efdb260ea223c2b12d93b35a5e8077ec424222d65f38559509f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143815 Malicious code in janus-lynx-nebula-astro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c58283b03b07b8dc5e0e6a679d5e9ea4d0b397a111371b7e52f2647e692d785 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144281 Malicious code in leda-miranda-oberon-capella (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 461eb1aaa170f1ade3866b64f4560dc0a875eb7da1242e23479da25eb4790740 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148235 Malicious code in sqlite-perseus-nebula-prompts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18f6b44d9bdca31d5c462ad3cc3176ab255171b26341dc579e4629fa32c15096 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145420 Malicious code in nextjs-ophiuchus-promise-umbriel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c187d34c2d44192758f3a3912218065e845cf8db834b7b605521524885b719aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141314 Malicious code in css-loader-relay-element-ui-gulp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd3a2b6b8eb1dcee62835621683bfa4bac6dc855bdb77725f0cb058fccaf4ced This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147580 Malicious code in sagitta-await-nightwatch-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 599b02ee33e0ca172ba387eb8fee06d5bd917b1b51bf2136c37300c417901fd7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141177 Malicious code in cosmiconfig-cressida-style-loader-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94271e0ad39049b5652876cee88d242361da4605c8f8899fd662c77483075950 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147390 Malicious code in restart-protractor-auriga-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd6c74e5d8b67a20911a113bf65794db83dff4dbdd74a3b2a604963ae5a756e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147842 Malicious code in semantic-ui-concurrently-enceladus-toml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e9348abe7dceafcbea1bb3601475a31350792e0fcf6ac6edef9d9fbc27f3268 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148137 Malicious code in spectron-webdriver-process-yonder-antd (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2343a8b6a2e8295b3328b4128cf6c6b8baa22c2f0554a20601126bb4be94ec50 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...