Malicious code in regulus-spica-passport-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a713fe213ed9bf0e8d60873861b986fa6ae9d86a561fc57c525d5bae053da4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141684 Malicious code in dorado-chalk-canopus-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9780f97be9dad27f3d893ac69914d86d4366e962fcb1202373b7f0fab22d148d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146529 Malicious code in private-apex-async-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 809989375fd7c4fee0ad26f02ee0690a7036ba01a3577306714bcb41ddf649ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142361 Malicious code in exec-scorpius-toml-transform (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7daf0e843578606a660a5a5683f1243e6794785cedd068b8403e79e4357aa2cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144247 Malicious code in lacerta-middleware-procyon-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da1b28da3265a24a7bcce4680ed10ee0d5aa21f933a37897e5c22f5b5203a960 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139804 Malicious code in await-proxima-mui-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2d650a20b5908dc81ddf5fe514abf51c8ed0990e33cfb1fe510b4db247ea4ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143204 Malicious code in heka-exec-terser-webpack-plugin-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 459a8911d404ea550d39c9a03962c94d442f59f3731ba158658f93ea0e9d1729 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-113764

Malicious code in exec-jekyll-redis-apollo npm...

Malicious code in dione-tool-exec-achernar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb0ede422a77bce351eab9cf913afa16a03cefcaf54961116943e70c3e322778 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-113216

Malicious code in gemini-dynamo-mongodb-exec npm...

EUVD-2025-120401

Malicious code in winston-telesto-update-exec npm...

Malicious code in antares-perseus-indus-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e171dc30c5618b4fb6ccfc0b3dc6ebf43932d473dddf05dff6be591c1695b8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-121669

Malicious code in standard-markdown-pdf-lyra-exec npm...

EUVD-2025-122121

Malicious code in selenium-cypress-izar-exec npm...

EUVD-2025-113822

Malicious code in europa-protractor-readable-exec npm...

EUVD-2025-116478

Malicious code in async-europa-exec-solis npm...

MAL-2025-139280 Malicious code in aldebaran-grus-playwright-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57e02caa4a0202f9fe74340d729f4014eb8e1fbf97483fdef1e9ccf1041ea252 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146468 Malicious code in prettier-fornax-exec-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de39dbf074648170ab74202eeed10b390bf1cb8832895dfec891d1612bcc4879 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141842 Malicious code in dynamo-venus-exec-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9834f191e6973ca933792bcd792d09f9f84d657d97d0348de6e3af16f84fc6ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147158 Malicious code in regulus-spica-passport-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a713fe213ed9bf0e8d60873861b986fa6ae9d86a561fc57c525d5bae053da4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...