MAL-2025-185442 Malicious code in alphard-mui-gatsby-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1cb3005addfce76c80633ae60df973892cc0a170579a5315c529dcf35c96059a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186729 Malicious code in enceladus-bionics-pulsar-izar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc471c541f583382db9548197fe8485291f4471086b4171d2f4b733bbb4f60aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186647 Malicious code in duplex-lacerta-link-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bade7eb4d1912f4a4adaa57c5a552d18bf4ea7cd965d9d597d05876253f04638 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187293 Malicious code in hawkingradiation-jupiter-morgan-equinox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bec805e2509a0ad2d0b56982f75be5e9577f71ed213846605475b8cfc1064bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186710 Malicious code in elektra-xml-grus-hugo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c8f6f9bbaf6c31fa6c66d4f459eaf167a741ccc0e66e0a22a5941bd34df4e5a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189884 Malicious code in test-meissa-stream-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e201ad4797f6c1d0adc706095b06d260333b5a1677e61717564549f492ee379a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186448 Malicious code in cypress-geckodriver-vulcan-metalsmith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a8e7b3c4e75f8542f11b8a92dfb8c43d2878628b0adecc1a5af688a49451c60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189817 Malicious code in tau-import-file-bad-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4109c4388178c46ba55b1c77f6875170c704f0586b730e075dec134b695d713d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187919 Malicious code in mantle-galaxy-vuetify-pm2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27d095cf3f4227e38f0e854fa3861543aa352678e355ebee87d347cda3e374fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187559 Malicious code in jabbah-areology-archaeometry-vega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1450f46fd9e16986c07c3d8779c3e55418dc857de0953803ae76fac04be89af6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185683 Malicious code in avior-backend-technocracy-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e4660f214d4b00c4b4abd3af9e79316c7f7c5a06984a4a7e9b4fde2a60140b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188754 Malicious code in plutology-release-it-despina-arcturus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52a749c6fc4371a3c2293723768a233f315f8ed6aed6c686b69a16951edb77c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187671 Malicious code in kastra-oberon-spectroscopy-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2e7279e1ca549eb0a3e63cb167e9feb16a51f1dedbbf158bf38ddbc2b169e23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190308 Malicious code in weywot-wezen-bootes-nodemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95af838a5409ad46c803f49911e5142c4505a584392775561fc0e5b1eb266f01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186693 Malicious code in elara-express-babel-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab76e836e3b58249794cc58f0387e341cbcb4f07e8b2c7fcde64da9830361a30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187725 Malicious code in lambda-daemon-cron-delta-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14fb54f754c0ebae3c47333aeee6383f8571f97acc80cc251881087f1353d280 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185639 Malicious code in atlas-ophiuchus-palynology-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9199776326ba6ad1fb449283394108e2cfe8a046a1fd232be90dc0ff164706a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189589 Malicious code in solis-perseus-bootstrap-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66b8d59746c8916f2d0e0aa816776331f332804015a10f708950338801106be5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188997 Malicious code in quantum-computing-less-loader-mensa-css-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eefb4c011996c06f58eda7e1840993e823cf3eddca4bdc92a366643fbc9da57c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186654 Malicious code in dynamo-mini-css-extract-plugin-cosmicsilence-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce8e478555161d23346f7ff922f8c5628d28d7fb3aafb9004466f99613fec9ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...