MAL-2025-186679 Malicious code in eclipse-levels-lynx-nanotechnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e16a598e256c596a0ce072b0c9bc1946d67911157b58b0ad8cad82e607360b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185925 Malicious code in build-eleventy-deneb-gemini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e60f9254d7e112b0cafa3f70a3f75b052568cb6aba5c5b36c30ab0558c2b06b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187952 Malicious code in mdx-development-elara-stratosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fcc4bd235720b3f28d193fb963d4a38119a58061d2fb460cd83c464444e31b27 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187660 Malicious code in kappa-nu-daemon-async-bad (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b657d373edb8e61669489b5128e98ebd488496a11d5e249541214b28a780a773 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187788 Malicious code in link-cat-fork-char-easy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c5ab55b4c3e29acb931e3d95408acd0a439484161dee1fdef22b993a7942071 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189377 Malicious code in scorpius-chalk-eleventy-kaus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0a057c21c71f4226b5c3f22f8b0019b297ad4819093ac6ee0bb78d98783e730 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186299 Malicious code in convict-spawn-gravitationalwave-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 128d86882e0076d80ab9827d708aa6534aa225eee0e3afeb4af5dcf612c62f79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188068 Malicious code in miranda-eigenstate-markdownlint-cosmogenic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60730d7b1b3a3616722a67fef2da7b80c756c109e822a7f463094c8d3d4741df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185617 Malicious code in async-encrypt-void-user-upsilon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7a36e99ef3a68fdfbc6ab3992a4fba166028b2c2f3e8f022aaa922e249f7eb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189830 Malicious code in taurus-mutation-izar-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c256602c1f7c8b93be5ed695597c57a40839d4299f5b8b8cbe4a4f17d74ed56c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189970 Malicious code in transform-version-sequelize-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e0b260696b6e01b16b95ea6411e5bdda668fb587ccda3c63e369cde6cd117d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185693 Malicious code in await-float-optimize-route-omicron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8e098a6f9822425661851047a431e132cc1cb8d102b241a0dd8972f13b4bd22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185990 Malicious code in callisto-hyperion-norma-firebase (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0fe17e81c29306f1f25e84d0a6731bf3cf77c77932e4fcd2d1cd2459925b626 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189036 Malicious code in quasarjet-magellan-eslint-config-capella (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66ff58fdde504d3d42a123d86f3b1ad2572ed8426a28e1b81fd8de74c23b13d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190068 Malicious code in unuk-loop-mdx-mysql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 295429884cb23c05cd22de2b6bb4cfe7d99359296b20883aa2aabebf7b820b72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187040 Malicious code in foundation-node-config-farout-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3793dd3ff731c5c1110f0f04402bcb024a4a5017e8a91628e170d29b6403c4d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185796 Malicious code in betelgeuse-octans-aether-less (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 238d025dab0ee39d02e7edfb16a051b43ebfac7d807344917f615cdf00cc72ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185708 Malicious code in awk-node-public-interpret-cron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e72184d33130eb0661746bef8ae65da6a9d81b8319bca387ad8374ec909da7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186600 Malicious code in docusaurus-xml-proxima-luna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4841cb7fbba4912212b6867a9ab9667021ec18b4781ff0fe00923b7377062a5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189783 Malicious code in supervisor-winston-superagent-exosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c074d6bb8981f905b8fa46ab7436103cabd9d9c9259190086e0dfb4dea7f3f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...