MAL-2025-187892 Malicious code in lyra-nebula-node-config-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71da1d08ee103264b969b081db8fc81219689df4fcc9605329c81bbdd888fe5d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185675 Malicious code in authorize-interface-good-xi-sanitize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d85a36709ba2fdf12ccdbbb3a62be3d509127dd2bf12f9547d0c46a7016f02d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188165 Malicious code in mysql-spectron-webdriver-primatology-eslint-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9acd5009432500e94d681e420e8609ed75797139abe3257f3de9937f8018298 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189767 Malicious code in supernova-miranda-ophiuchus-resonance (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eee783b24405094b625f3cc656fb7452e71114de055fbebd3c90db0063e74b2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189379 Malicious code in scorpius-elara-membrane-brane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb39ffa44da48ee1378a4026bab1577b895a9547b6f4fd79847539f08e9ed685 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188124 Malicious code in morgan-magellan-public-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2a4010d8bb1de8e155f1dfe6a934c3701b7769ede92845ac847a3ee42879e16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185686 Malicious code in avior-gulp-sagitta-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d74a939914422a428ce54ff6c5a30cc4c419e3633552ab96d352402aa0c4b77 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186049 Malicious code in centauri-lint-staged-helios-sequelize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9eab0d924602d29cc3179d81363d190feec2af6ccd55ba69319b6d36f31f733 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189263 Malicious code in rocket-planetology-mira-convict (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e554a1872c6a881e9266087c9118e5844fd78fa0a2c73e38dbebe1ff503e1f57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187541 Malicious code in iota-levels-foundation-solis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00c2b0af1eef0fba29bf292945385ea48af585baa02b34ea53e9ae76e24eca73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189637 Malicious code in sqlite-winston-scripts-uninstall (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0cff5f26dee0c022bd5ce46d719a6d2583faae3414309a1c04c5ff377c8dea5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190085 Malicious code in upgrade-mesosphere-slides-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a91873a5b873df3fe99ee0ec6b44cc1d4008c8bc74886676ad22b1e99b5abe9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189084 Malicious code in rate-limiter-fork-command-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8de1f20d686d73ab00b93d7d050066e33427b1fe2051dc19a4ef17226e48fd4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189482 Malicious code in short-public-permission-grid-throw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99cebd8516a3b996a17b13a2a6d99d754157b97ff1c4d86de13c01ebfafb4356 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186055 Malicious code in centauri-troposphere-umbriel-decoherence (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffce901f46d32f0a4d9a884e9616143978c7422b11aa4e4a6c562b461995027f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yakutsk-metalsmith-astrochemistry-terser (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 716ae5e8aa43202b32c8b4a3aa8cf544d3e6ad69c383911d5515b92e5ed44899 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in multiverse-jsonp-mdx-commitlint-config-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 318b505452a0445439130fb4c30bd9bc2c4afb2b92ba690f9cba25b020aa08cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in perseus-orbit-iota-aquarius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ccbfd6e5e96370c38700b129593b52a7d859df25adf5ca593c54da701eec1872 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mysql-enceladus-cressida-whitedwarf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30127f561aaee92f2844597d8f2c4f4c05917776b7427fedbbd4c3112d2b841d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in aether-foundation-request-tectonophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffc9fd0a034150e047fd366ef04b684968fb67604112d8700999a30a191a84c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...