MAL-2025-189262 Malicious code in rocket-package-sass-loader-avior (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d67124e33ba64b1c42f833fc39b6ff0beafc787ffff39c5b660e68a4b0a509dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186107 Malicious code in changelog-archaeogenetics-mini-css-extract-plugin-dotenv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43c89b3115fa6923864030d78898e8602e4c6c3e8398a4d8729c6a880b206927 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189900 Malicious code in testcafe-postcss-europa-atlas (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0c0b587b82115b84377ead8bc9a56089abcc5377b44746e483ed6e69e89ec63 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190254 Malicious code in web-container-container-sigma-optimize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76f4e0c5360c2b3e572b5d6ed0ee2e4021c2e71ae32acc87dadea5d19cf8656b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189349 Malicious code in sanitize-new-link-code-void (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ea502fe1787665ba66414467f0d22ea7bd53a05d1a42ad35bb8974b5d525531 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186361 Malicious code in cosmos-geochemistry-sqlite-lint-staged (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94a4f28aa9524d563787af9035f4a58546934a5936e381248bff651323b64c82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187078 Malicious code in futurology-taurus-celeste-css-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1045d491631ce511cf53559c44f9ae0829ae32107f0174344aac337df169767a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186414 Malicious code in css-loader-castor-supervisor-elara (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 193b52bbac9dd8c437627cdd8702135559f279b67db8494364cbc1d7a07bfec9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188392 Malicious code in octans-prompts-hyperion-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82dfc59630dc6579e771d7439a8c775e0056caae7877235573ac6d2d0277f2dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185523 Malicious code in archaeogenetics-astrochemistry-quark-chakra-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9101bb249512831ae69aebab145195c2c777abc6fba8d572f58c08df4437898b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190366 Malicious code in xenobiology-materialize-epimetheus-atlas (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91bff12111e26834b786d9cace08b98ae630c9ff4cad6ee080efa7afb0328019 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186007 Malicious code in carpo-lynx-sirius-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a61b45a733442dad2bee78073691142efef575d4be2352de5061b96005b2b5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186090 Malicious code in chakra-ui-ophiuchus-sublimation-readable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 44f618e732db8d3ff69334d6194da83ee2d0ecd8d2a83ac60310bfeae1aa6068 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189023 Malicious code in quark-perturbation-lyra-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ae7d9e05afc9ae4b162ef3a5a90926fb02dc43eff61ae5189e999b8eba1ab58 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188199 Malicious code in nebula-dactyl-avior-thermosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b895ab836b821d1e6ce731d76f1e43dfe64ebbe729b953e0ab44c71f0649c411 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190393 Malicious code in xi-moon-star-fire-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 362014d5ddaa5609b560cef0f3912766ea90c9f16f84a1fd7f3d1750deb77951 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190399 Malicious code in xml-proxima-rest-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a1102d2c7aae26b1696c4937b33f1603f7e0cb43277d6af00d48ae46b44ba92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190420 Malicious code in yakutsk-server-hydrogeology-saturnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94ddcdd1a39596600453c1286cdf1de0aacdad289f6dea9f82289d39605cad22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189338 Malicious code in sandbox-hot-cron-query-boolean (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17f43a7ba52f6e7fb74fb6de0210186e218442b2e26082f0f97a0a0b065a03b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188645 Malicious code in perturbation-thuban-neuromorphic-dynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2fa00f740ade73172c617afb80c51e53ffc4ec855be446bf8bdebf9b4ecc976 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...