MAL-2025-189618 Malicious code in spectroscopy-webdriver-manager-await-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd63e8f2ff15aafdf183c39b1a3af9623710f2abe9e62e6cf0138f4389f6a0ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187942 Malicious code in materialize-dotenv-safe-sublimation-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eefa120636cfd6f73b190f56220380ce77849e4a839a8559d1106992e1aa7d8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190029 Malicious code in uglify-zeta-tree-delta-runtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c2a9aea8eab50320c779880a7b814aebf214304d7a582738f948d6c44cf0d10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186830 Malicious code in error-validate-refactor-byte-lambda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e7990422b33800950f82b858c49bc8d9140dbd49c020770a8373607ea132679 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188372 Malicious code in nuxtjs-heka-google-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc5c65fb21b2b3d1ecc525d9eef20278307f1623df27345292cda8081c3ce4f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188490 Malicious code in package-changelog-css-loader-slidev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf183518eb8813f78ae38737637f90dad98dce465ad977d4ef42935ed1a8da7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185396 Malicious code in aether-radiometric-sedna-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7134d489c8a851a58b9529605d85a949d662e70a8a5b193333fd2b342b9db97b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190146 Malicious code in version-virtualreality-scorpius-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2474968d15e1ae15d7fe3d765d5e06ca8d713e82add09b6ddc4d7083cda699b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187873 Malicious code in luminescence-chai-cryonics-eclipse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 989540b879fb299e0397665529c72e3ce6741ea1e975f756eb06854b13707b44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186496 Malicious code in debug-container-zeta-load-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c066f1f70682712ef0317f6958763b00dc3f36c2f09ae739d4f22feb94c69d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186792 Malicious code in epsilon-protected-reject-parse-benchmark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35e2002f19bc3435a3e86a887d2655568e319690d4a9b1e37aedef4be186df3c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187390 Malicious code in husky-build-toml-troposphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00b004e07d0723764bfb0cbb6eb143a7cfbe71535a13c106188bd71e867b1013 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185725 Malicious code in backend-crust-cordelia-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9abfdf4b11861c28b5f846e1b02a001c90a9a855d5563ce213d97013e6a36817 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189591 Malicious code in solis-semantic-release-pm2-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25f3fbcd8cfd3f79b4077a30db2336a9949bd3aed84da84464d9498779874eb6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185985 Malicious code in callisto-cors-ini-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ee2ae0957732c6cc0510feddf764b20bdbfeee3eb45f1f46839a45c4ac7e2c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186243 Malicious code in commitizen-radioastronomy-steganography-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4570637a2fc26f6065d9a514ce97d5a5427454e1864df6aeeea4fd1563720406 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187432 Malicious code in import-benchmark-warn-node-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24561d64b8cda186bb2d88f82638fb3bbc75befb15a7a94728acd63a9b4ddfac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188870 Malicious code in prompts-flare-celeste-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63b9d41dc415d07ac9a8656e3895a099dc4d7424b7a34ab8503ea5573f770548 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187638 Malicious code in juno-saturnology-sass-loader-joviology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector beb54e9749d9d21998cf67910838ec70d40b9d045cee981abefd69fed26a290d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188602 Malicious code in pegasus-pulsar-plutology-astrochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7119678a00523fb454aee015dc8349a8b07748c775b4a6d48223cfa6da03a0d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...