MAL-2025-190222 Malicious code in warp-hyperion-quasar-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ce712bcaa7250178e1c74d3981affc85be58ccdcbbe4747eb57092b766b7c04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cold-dog-module-notify-good (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4c83bd10b2435c6dbd483122fd890dd154abcfcc705f21736d501c33135c704 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185768 Malicious code in bellatrix-local-puppeteer-epigenetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4a6d6dbfd6ed566627b43a2f32125740bc5874194d00ba5e1b805d7c17f74ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189316 Malicious code in sagitta-mira-ceres-darkenergy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b76993c5dd8be639afd390d473125aec1b4cb1a0826e660f59f9c189c8e4161 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189489 Malicious code in sigma-query-interpret-phi-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3a99585f843fc934bcd70b362cd9255963bc313216a20084ac91a6471106bb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in centaurus-backend-json-draco (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb8dea9b73b571b9c8d8e272ee880a099ecc1292ae7297f81817f14529e4d3b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189115 Malicious code in redshift-run-script-chai-koa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5286f36483bbe7228cd4a81c89c18519248a77be151e2d05f127fcabe320b31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187567 Malicious code in janus-centaurus-mutation-koa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ade06bb69658e6f0d48afa3ad9598c1491c9cff55530ec10a0eb88bdd857857b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-183787 Malicious code in maslv-ilo-cvaginanavcuovhu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 656941ea059e1a32ea8b0a4298dd11fb63992a79bcb320facc3fcb2b6d39de74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-183019 Malicious code in itale-dci-rryusyfsufytftt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9abdca089e375df5b932abdbff741da21b183e365c98f33dbce04dfd0f1794e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-182036 Malicious code in flights-lutuig-alakanjinmahw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ccfc735b506c0479082621cdbc9f64689a046528646314c69fa350f0e8d5f09b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in modiov-khan-avcd (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d27af0f513ef5e06d7607e9ef91d743b3e42098830c214bf44a9d432f19ca2f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-181376 Malicious code in baso20 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5606ee6e395396c689c9556c4a8e5d0ad54ac4ab647b76ab5bff2f9edbfec32e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-180868 Malicious code in teate-thy-sonic-ramjak (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2095c16421ce579f4e386ecba1e0e8702d97973855e25cb8028b42b1d83c264 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-180807 Malicious code in teate-thy-sonic-orwil (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9ed2c79d94c6f8aee06ebc52b503b631a6fb24ca3ec704b2f2a74dc904c2c4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sahufarf-satidaf-faivubs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64a29175406badc58908c2c8552f46d0ac6913a598cbbc2fcfe94b0231bd0a66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in butanaih-asafi-davatihu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c99495fcde25341899db35c61ae86ddefea7fe7b906537fdcc14f09ca73fffc5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-173175 Malicious code in buis-manuias-botayad (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 534a0e91a45179b3677bbe483c01642ba531da66a94c5e42f6384c2ebd1f50ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-176794 Malicious code in nuilva-darde-agalif (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 929c28f424e8056da7b682b956d21444bbcb1bc71c6f75f6e87f50b0d8d14994 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-175286 Malicious code in kapvino-socvnvi-bofnvu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0ea0e0fb6b11980b81d7a8a5eb1ece9fa3cbe45e81ee2cc621dfb7287c33054 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...