MAL-2025-186137 Malicious code in chi-mu-socket-cold-small (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0c962890667949b1dda36ebe56787555eacad6d8b589542c2a0f944f45c3d10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188117 Malicious code in mongoose-wolf-deimos-forever (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 278e4a12ef49eb23953dc1bea73ef37ad5b5174a325aaebbabb2faba7c8c204b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186022 Malicious code in castor-ganymede-registry-blaze (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfdb99fb904b107d2e5916b03e976fd9934c58aa09d3cc1cf8f64ee21bc92563 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186785 Malicious code in epimetheus-sagitta-cosmicweb-dactyl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90bc7aa72b27d6ff25deddb6571fb73ec8eb566c3846eddf42956cf6fb0fa976 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188073 Malicious code in miranda-genomics-uninstall-virgo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfeacda2b376daee22f78d9a59bb58433ef352a72d825d0910791a5051064406 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190314 Malicious code in wezen-mutation-ora-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 785a2cd14109740cafff9a8e5b31c61ce4568134f9abfba94196cfe4cfa0d4d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187322 Malicious code in helmet-blitz-izar-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7274aac6f97ba8fd1f45ebb661eb0379a9e13bb52fc4ca45314725f2352ed531 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189673 Malicious code in stop-prompts-fusion-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a369d5bd92a84f0b2a7db8c2040c883f375e842eb37e42b4aeac8b102ff0f006 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189702 Malicious code in stub-emulate-decompress-view-sandbox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3014404892613825d603f59e7f5acebc98b397d1e96068233852a6fa05f78311 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188233 Malicious code in neptune-venus-foundation-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee152f2d4396ca7e5f7e1a9e8af596f9095773d1fab65f76596fd3bf58c29f61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188506 Malicious code in paleoclimatology-cosmogenic-crust-kardashevscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00e15ddb8489db7af6fbf7562f37b8fc6a58192ece39405003e76501af3efbeb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185551 Malicious code in arcturus-venus-loop-cressida (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96ed06828532b121a84a1185a79336c108250ef8e69551667cb9ac3227c6fab1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187666 Malicious code in karma-cross-env-mocha-grus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc707037d54ddbddf16b2cf0245a7546cb636b2bd26cc4ef826e23f5433923df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188381 Malicious code in oberon-mdx-hydrogeology-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03f7ec2bd6822ff1708b0250bb0c57bd1da996bc00fe5b964037082fc9942ea0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189800 Malicious code in tachyon-string-version-sequelize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0fdfc74478a9afbba79d8616c10a0a83eb890f0f6898259eec91b20c796be2c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190373 Malicious code in xenon-prettier-plugin-markdown-csv-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c713706c18d49eb384bd0bbed325910100ac359c57dd42b07ef52f54605e1685 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188921 Malicious code in proxima-thermosphere-weywot-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2244dab451a96c625aa78d793fcb3ba1931ffe5080498587c46c6bbf7f5a3d62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185431 Malicious code in alpha-authenticate-serialize-long-try (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 199def465b170141e797244332a927dcb36e3ae277b1a2ef1f33c77fd984bd0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187851 Malicious code in loglevel-meteor-mui-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ca35c471536de6395cd1a455a18886f5a26d7919adfe6f44006c4879d894dfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187250 Malicious code in gulp-cluster-hermes-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b75be2e9a1f4408daffb548607099533dca2e521294c032121214e57670fec67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...