MAL-2025-145511 Malicious code in node-config-jasmine-sass-loader-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71be3c59e0dfe748e4027f1079b928a11014eb9ed0dd0db124e3b57c425b16d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139264 Malicious code in airbnb-transform-apollo-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 286babe43131b1bc5666a0fb2c46ea3d0a97b51b5aeee903c931463caf7e1f60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142842 Malicious code in gatsby-exec-foundation-gulp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08aaa4659fe961e104e5a69e278baf5b0518eb53c8882b3de7b2bee0c88b2e8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143785 Malicious code in jabbah-nuxtjs-spica-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14c6404a455bb29d3f9893290050e6e8982e6a5dbc7c9429a4f25827345da287 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144375 Malicious code in library-fornax-start-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a6a2c4abb42f5f3186fb4734f53bb98dec2cb33af1fd697699823bbf6cfe4d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143735 Malicious code in iota-node-config-nconf-zenith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 776028f8550df0eb3f0612e558293396e665b35add8f207b7c3b8636a9fe1b6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140493 Malicious code in castor-rest-orbit-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 829f11bce1bd5202c40fe72edba2aeca19e4d77af75efa888c3d72fbdcb49c07 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146208 Malicious code in pino-altair-uninstall-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d0423eb7c4257b5d212c7e4a2eddf4cdb96433580e42544234fa6e5818cbd10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147306 Malicious code in request-react-bootstrap-eslint-config-superagent (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05c42231242daa33d49ae67eb469553c9f5a0e324dfcb03cf0c480f9ada6ca83 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in competent_krill_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3996122074b551d003f4ae780312aa8b69fa116ed2866785630d4311392eb7fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-137547 Malicious code in umi-lontong7-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed11b62d302a5643770366c7d0d594a7ffb428acc23f98e84cba876eb6b72f86 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-135850 Malicious code in numerous_caterpillar_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12f84508971369158b3419623b82179d16ff5c26ace09ff21e20d7db5d704670 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-138331 Malicious code in yucky_magpie_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b9fe148425095b4367aeff3abdeecfe8b4f36e60690b16bfe84a5281d3f4f37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-134946 Malicious code in kurnia-kue13-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdfd0fabe88b4f0ceebc5c255bcbf99835138107846aae37d087c194ba28a08d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-135733 Malicious code in nana-kripik55-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d9a36f71564714a5e1d279bbc9570f3f7f6ddb7eb31f77e3f296235db24481a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mahesa-empal4-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91525addfda8f1fd840ecb5031342c3bba614aa2166bc658c6373afafc86e8cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zul-martabak64-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c95c072cc7213509f675809fcd1f05ec874c1187d5915db1dfefb718775dabf5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sinta-dradag51-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbc468f99f4845f9d1eef80e5961a45ee7be749f9c512af516df86ae6b372196 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-133344 Malicious code in fajar-bakwan73-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a474d1f624a861e4804be0809e0198f60dd41287b4c84b692df913f7739e80c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-138234 Malicious code in yanti-kue99-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40b6d0c0dcbd0fce0bb8eb4d921381a5294450ab4daa07cb0be3146adac80b04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...