MAL-2025-188324 Malicious code in nodejs-cosmicweb-chakra-ui-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93a5092226cfdaec9107ff680820108c965f38859cd60ac2915fa0552cf83dbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185551 Malicious code in arcturus-venus-loop-cressida (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96ed06828532b121a84a1185a79336c108250ef8e69551667cb9ac3227c6fab1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185514 Malicious code in aquarius-jsonp-technocracy-bulma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ad13a1237202f35a96aa28cc0e5f19e2695115dc612673306cb0f2cb530f758 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189673 Malicious code in stop-prompts-fusion-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a369d5bd92a84f0b2a7db8c2040c883f375e842eb37e42b4aeac8b102ff0f006 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189213 Malicious code in rest-nova-nightwatch-commitlint-config-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 667df92958e84b0615d81c3cbb178f8c117b019ca8357f70aa7c4c9d742be2b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188384 Malicious code in object-chi-yaml-authorize-zero (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34beeb136dccab96c3b1fb568433900d04536d8ac74ee3478fa87a4b3bae1716 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187851 Malicious code in loglevel-meteor-mui-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ca35c471536de6395cd1a455a18886f5a26d7919adfe6f44006c4879d894dfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187825 Malicious code in lithosphere-pegasus-jest-paleoecology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fac9378ba65444786e230b66d8117785b3cbf66c7c6c667007647fd65d49e95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sirius-phoebe-zenobia-babel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4e356e0189aeabe1d3533e01c5b8a0675f2e4f2b23acfdb7648ee90530adf9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in local-astrobiology-magellan-airbnb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a2c2f4a1059031e0a45ea178d7af7eb11800fc2c6f6b0f385b866faf57316f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miranda-yildun-zooarchaeology-bionics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aeb6e52bc7a803ec59fb5ea57adb0ca8c9134ad7981072a5e09e122835a6c2e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in repository-reveal-md-multiverse-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de52f7052500891977e9b92278627f7cabde231989ddf59ee96489c8f19bf65a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in docusaurus-xml-proxima-luna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4841cb7fbba4912212b6867a9ab9667021ec18b4781ff0fe00923b7377062a5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nu-interpret-container-grep-bad (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09fcf0f0b56c9bcce303f3f0b00cd434d5f276b06967ac7541976361325bfcd1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189464 Malicious code in server-nestjs-selenium-cassini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8a760dd4bce11efdd666ee3f24ade2e0fc29cedb52383bb55dab1cfa53cbcfb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189544 Malicious code in slow-promise-delta-root-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 978db9873fd5163d504d6dcef0b180a56a9a49e2c99ee402c0549f5d2eb165d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187114 Malicious code in ganymede-tethys-jwt-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 404215b9a56b2a2fb508a19ae3dd7a8e028cd7ee171394ea28d87123eb72e07b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188253 Malicious code in neutronstar-quark-dotenv-safe-koa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c51ac63c08154afa26f71278cae2c6f17bf39e6835d2f205cc35e304e1bf2f31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189043 Malicious code in quick-decode-transpile-array-wind (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 789be1eb5319667c7103faae653520c2ac40f78ca9957e497f34f7395845b3d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185973 Malicious code in callback-dynamo-lacerta-chakra-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6d300878b315b706f8527cf43747b70cde297845c6d57fd85b3a93e8b1d283a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...