MAL-2025-186491 Malicious code in data-node-sanitize-balance-optimize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acb8d9703abe39cfefbc8d1d34c0ba97b94086751ef2aac885f5688de093b8bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190317 Malicious code in whitedwarf-fomalhaut-nodemon-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 485383a1d4793fa4e99c507b8c6475dfc9bc9e56e6433a5eb09c6255405a640d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186230 Malicious code in command-celeste-resonance-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3b7daa0dd48aae2de3f1cc7c64f7fa3b63d95577226dcd56b70f089c12ed9b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187750 Malicious code in less-cluster-soap-firebase (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47863fe4b497adc647bce8fd2ec2979fb05147e8a1705890e418fd3b97b51b6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190428 Malicious code in yaml-notify-authorize-code-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a748c3c4c6a4f455fa26d8f4b30766e633d2091829606b8fe5c328df246bca5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187954 Malicious code in mdx-kaus-browserify-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c35c481bdc9c3cd04791a4bd2aea3c97faf1ab41752bdeaa06954b53da493801 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185673 Malicious code in authorize-float-signal-string-table (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c818eb168c17bd59b31cd9c9fd8fb24062591d2a7f46885d4ae24493b54d593 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188149 Malicious code in multiverse-terser-webpack-plugin-vulcan-redgiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3baa1735030fec28c869f9415dedd3770acbed82aa70c4034145b69388e3ca53 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187325 Malicious code in helmet-pegasus-non-blocking-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14468cf08644b774f382415ed7ea9da2eca47006b532d6e5389e4ad5a9f45130 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187863 Malicious code in loop-cosmicray-repository-entanglement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f610163d80c4d4634df39dc9eb5e1f94442dcd4e7b119bbb4aa148cef9ee272 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187513 Malicious code in interpret-deploy-omega-async-fire (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9548d951625cc682aa2b671f44bdb5b9bc083e3b6c50b33272d8daac848d51a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188279 Malicious code in nightmare-version-levels-mui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31a297fae66d552bead526aba85b7fe7db06f9336bc28adb7ec24729c055c79c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186905 Malicious code in exoplanet-scripts-webpack-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30bdc2b9b37921b1329658051abffcd6a5a4c3353ffdf67338e72ac4d419e113 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185633 Malicious code in async-yonder-hadron-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 775c77c14b2284f212027404562df746812937dd230c0e6f51634f32df0c533d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187888 Malicious code in lyra-archaeoastronomy-graviton-altair (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8899ed7471e985e84376208e83bc674a3f185c1387225341796fa134880c727e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189707 Malicious code in style-loader-node-sass-graphql-nashira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc26ec30e9a3ace49a0ba1f6deef1a416fd2b984258bb5e7f2a2d6abe3c0b3f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185819 Malicious code in bioinformatics-async-wezen-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d985ecd64cacf5233b2a1054b7e2ed5ced314f675ee6e190abc588762b03b287 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186310 Malicious code in cordelia-zenith-ganymede-mutation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c52cc7a0b5ee7ab3c856d1daa1a376b8b8524151fc4f7a6b66551f0059afb40c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189340 Malicious code in sandbox-kernel-web-good-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30a8cbaba2cc17bb7d2f755e8e246f74bf867556708a1559e09e18f4dfad5130 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188935 Malicious code in public-dog-secure-user-omega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89b3ecbfb521f54bc0a2e5f288dc76d1fa2de219c9ce457fa24196b94a7abd81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...