MAL-2025-187306 Malicious code in heka-mdx-kaus-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 272c8eefdcedd52dab7dc0dd7eef12e6f770658cedcd0d14ba9ec787e9ad9cb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190357 Malicious code in xanthus-got-telesto-accretion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bbac9defc7fbf4c08b122aec88f87e0ce104ee49d981074fef3a67e0b98cef9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186393 Malicious code in cryonics-cypress-stream-lithosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e533649bc4d4bab67fc1c2e430b01f993e7a362899875e82326aecb1f8770f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188913 Malicious code in proxima-hugo-pm2-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9bb17e16f79c8aed56179cb32c277f170ac4625f582251cd9e83a240a0d374c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186581 Malicious code in development-rollup-pipe-koa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5422eb14dc81f622c8c1bfc1659db7e1382b798ad0b831b1816419a6c998cd88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189482 Malicious code in short-public-permission-grid-throw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99cebd8516a3b996a17b13a2a6d99d754157b97ff1c4d86de13c01ebfafb4356 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186970 Malicious code in figures-proxima-sedna-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92d0b9329c538d56e5c03a9784fb71627128b7a5d0af3687c492dcdac386fa18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186083 Malicious code in chai-prompts-auth0-geckodriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad324c4ea61642de7103f9b9dd8dbcd82c0039694bf830c253f7ff3fe81db1ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186822 Malicious code in eris-writable-docusaurus-on (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 722d4d900728b73a74cce7951c7c4f7bf6d25c2474c3ebdb2614383d6b187cfe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188171 Malicious code in nashira-dotenv-parse-variables-gulp-lynx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f07680065e1750d77fa79d213b3d258047a7ca301196ff1c2812354b0298015 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188328 Malicious code in nodejs-radioastronomy-tailwindcss-chalk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f55993d0565f8d92a812004ecc5cbd614a5e9d4d25497d89d5a0002bd114cc88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186623 Malicious code in dotenv-safe-norma-vuetify-paleomagnetism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ccad51f031eaa94c4ba5ee1a9ff854e2f73daacdc4dd9892bd11978d178526b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186529 Malicious code in delphinus-run-script-deneb-query (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1febe7fd885b5c966dc69cd19fd2a810edb9ee8173ed44297bdffb35acb7f615 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186880 Malicious code in eventhoriz-futurology-event-chariklo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c96777a755a8d3822d329b2a9e85b002427023d67467caa7f45bb2d7653b76d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189359 Malicious code in saturnology-blueshift-parcel-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc4ca50082877acc2537bcfeaf9b2c9c124596a3983a4d9613ab7b63760f005f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187005 Malicious code in fomalhaut-nashira-webdriverio-init (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a034cd14a877e2c5d7412544ed3aa5a725a051aa47414ff2e337b9637217fcd2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187362 Malicious code in hologram-jekyll-radiometric-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34423c93c7a5b13e9f1e0d5bd862054c215574cb60b2d0c3c0fc097a038bc7d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188123 Malicious code in moon-unix-meta-process-kernel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 432d18ccf99d5d85dffa21aae798b7ec0ce7b7df8d0070f8e8d4c477f92b2037 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188464 Malicious code in orbit-css-minimizer-webpack-plugin-paleontology-centaurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab7f5cc9d01824907a5d44dc771cb5aac82e0c1a99d9446c42589fadfa59dad2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186207 Malicious code in colors-request-xo-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1498b0185b55cab24bef95e606502bbbd2afbfe23c40d14a9b5f91cec7b05faf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...