MAL-2025-188937 Malicious code in public-final-iota-upsilon-array (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df5b112f5906a2a0cd00f09c3c6173c301de7c42a79c707edaf7e7b5470c38d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188026 Malicious code in meteor-jupiter-jupiter-xanthus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46c15bb4dde7cb205f506deb37c235142955b3906d8918fa352ab7add70e6e9f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187307 Malicious code in heka-neptune-nightwatch-andromeda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d84dc40b71697f2fdd325952b027c262ffc610bc4981dd870c48b15e3491471e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187605 Malicious code in jekyll-resolvers-quark-xenobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34bfb629499da5c9e01ccc9365672ad6e8c74fb46d6ef77e41e64360a8d779ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186337 Malicious code in cosmicray-nova-regulus-eleventy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 629a39b0a9e899a2c00667e031e0aa1a1416eb7626b9123e8f696be447ca89b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190422 Malicious code in yaml-cache-sails-jwt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af495e448a44b27ba05a7124ae72a767dbc8c0ee4b614c3f1fe4155da6a49a1e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186541 Malicious code in dendrochronology-pm2-chromedriver-orogeny (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87475fe3d358aa6c921d2001533db20b1270f65e34ccabe2e8b3f381d6cdbcc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189433 Malicious code in selenium-troposphere-nebula-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b95472989f84ff62f81f6c99b113fbaf6da8a185c95d54c9630b37770ad223cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186471 Malicious code in dagda-non-blocking-html-webpack-plugin-astrophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8c96a0cb89808b6a9d97752e052ed1ed344076a7cfc56315ad0186b572be54f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in oliobc-uyg-ugiafaidabafiuh (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a324e284ceb84a66a147f53184bb3d073cd3c89488304ab20d27b7bf260f1d34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sonic-oig-moic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd1fff493bb21b5f8074af9673a67846daf27920131c871d6c6056cfb790e9a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in odasv-kinu-bobc (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7600c7ee51ab986eb8d25bb13260f147dafbb482f6052a8c7e085917ad0ee24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in modiov-khan-afibanaivuavihid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c45a630b9711d98580e03bd3f2471fdbbe0c2077000fc75d466f4b40680bc4a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in manu-oy-gioisioasloi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4156a084b34fd4f478171e916ed03ca6973ccca5fc35089a2469ba55a8585532 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mitoko-on-lak (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88ef4ce4cfb8503732d7b438282d17e82f2419905c4e011cf50294ea71ebcf8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in manu-oi-gisiasugo1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c818be5d8a9f0ab002ed67eb41e9de2d8fc7c57f345151ecb9f9684a234bbb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184726 Malicious code in oloc-uyg-uhitaggadtusafadi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a5b671746f78f9c3594bbd8fb7a857adfc8e76124de546e32164ee7151f5671 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-183854 Malicious code in masv-ilimo-civufavicasa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31509ff088637429685bd189a2823d92535c97ddc80675efabfc95e318c12efe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-182948 Malicious code in itale-adci-ykhjyafizgantengkomtol (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ddd306159ff4d54ee1564f11cc3223f782492fada0659ee42df6c9fb8f0a2ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-183922 Malicious code in mitali-dn-olika (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ce01267608fa3b9c7b026e83872d7936e224bf30e90f4c326a4a6fc1cb9acda This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...