MAL-2025-190368 Malicious code in xenon-apex-ultra-zenith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d255eba690342099284d8bf8a8103b1b72404c253a39810bbe3abd1882f8030 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186619 Malicious code in dotenv-parse-variables-public-cosmiconfig-zenobia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9e2cf5e995e7be6217368c91ec8ecf853022838cc7a763cbcc73d49e0c23b00 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190029 Malicious code in uglify-zeta-tree-delta-runtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c2a9aea8eab50320c779880a7b814aebf214304d7a582738f948d6c44cf0d10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189340 Malicious code in sandbox-kernel-web-good-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30a8cbaba2cc17bb7d2f755e8e246f74bf867556708a1559e09e18f4dfad5130 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187055 Malicious code in function-bundle-log-validate-grid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a35fd81b2277d6c9f3ea3bf6f2675c20d346503b3d766e1488c95eb5d44700c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188720 Malicious code in pipe-grid-byte-old-array (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 707c043a8df19e2deb325b85449d0ea39297d0bfab853cf484146aafbc444bd4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188935 Malicious code in public-dog-secure-user-omega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89b3ecbfb521f54bc0a2e5f288dc76d1fa2de219c9ce457fa24196b94a7abd81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187793 Malicious code in link-loopback-hydrogeology-gacrux (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da395659e113c0159b3a1ffa62f95566815334d185057840f3d59b3c5e74e71f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188174 Malicious code in native-blackhole-parcel-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a471cc517289478a545c2d4f578f4a0270138b69edff1c911bc1f622c60c9c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188016 Malicious code in meteor-chalk-blueshift-gulp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3261ab78dad9de4315430701c10bbd595ac7f1148a275b466115baea23d4af22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188144 Malicious code in mui-xerxes-proxima-cassini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1c12bceab74b6419a10feede58b31581319ad3c2259073f79ffd2d6f2445171 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185742 Malicious code in balance-char-byte-final-big (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 817e865ae1c8a984187cb4dbd722f2a15ab88822dc1ff846b8b0644a317fdc6b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185976 Malicious code in callback-jekyll-public-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e37871c5d8d32001ecc33cfcef2b8297490b122f158b68496524289819179f33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189175 Malicious code in remark-fornax-ora-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c243912e669259606e8a9f8f960ecc02cdb7dec0dbf107c3290c61dfef328cfb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185916 Malicious code in browserify-nodemon-proxima-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f8fe0178708beab3a0e8eecf0b864a676279dca80cabc51fa9d0f1f2d2579c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187332 Malicious code in hercules-config-juno-void (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f4cd30f00323af7b524f61b17219f21295d6d27272c1dc39765553c6d27266b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190240 Malicious code in water-catch-cloud-upsilon-java (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ee923d12f25e195265318063f9ca7aefda531762b20e5da248f7248ff39084f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187749 Malicious code in less-bioinformatics-ganymede-virtualreality (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad1df13485b81ad390a085ef0c658f7e6e2b325d9e8b388407e0aca4b92b451c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185463 Malicious code in antares-bunyan-apollo-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2c64bc39e1aa26b38456721f22e94693806377129dbac49a767a3dbeb61f372 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187075 Malicious code in futurology-fermiparadox-parsec-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7932b00db63a52a64e991976f6b489776b42c5b992ba035510f6778c3fcd33c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...