MAL-2025-189598 Malicious code in spawn-regulus-brane-nodemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d855c15514ea55fd35eff8ca8279a4ffff51adf6a4d33e0ad87569672a1d357d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186659 Malicious code in dysonswarm-gulp-dendrochronology-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df2900cd899be02f8b927b3a22067e8f4e1e87d3b8ee57a7ad44205167f4a2bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189588 Malicious code in solis-chakra-ui-comet-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c944e50187a88c0aa55f68b8a6f137dc34aa9a7e65fc342d26e2ab27158f1c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188144 Malicious code in mui-xerxes-proxima-cassini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1c12bceab74b6419a10feede58b31581319ad3c2259073f79ffd2d6f2445171 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188855 Malicious code in promise-compile-interface-benchmark-fire (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b306b5b7cc9339e9799edff3557952329fe0e2e2ea03105bd35bdc395d9f0202 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187436 Malicious code in import-log-monitor-rho-function (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e0aa8e668ba36d4d41ca2d43ee6c401b9c982a3750a080700e0fadd64b7ec5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190173 Malicious code in visualize-object-xml-long-sigma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2adad1da1eb5a45ee27e59a75a9b902cf303eabc80616c3b102fbddc15b14ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187732 Malicious code in leda-gemini-saturnology-jovian (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6f5b569b71df46bf686285180ffd3ef0e011173804742d78524bd68db8bc38c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190312 Malicious code in wezen-hexo-update-lithosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29b835942f6a8543c810550c04c687136135ae9e3c47b61eb95bd234b7c13caa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189618 Malicious code in spectroscopy-webdriver-manager-await-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd63e8f2ff15aafdf183c39b1a3af9623710f2abe9e62e6cf0138f4389f6a0ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188605 Malicious code in pegasus-resolvers-leda-mechatronics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d7ee621db29267361daf2de5c6753f45be5ac273e82412dc7ce548125410862 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186128 Malicious code in chariklo-library-public-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa536a5e403d931475f9787e1461256bb925caed3c743de48b475db4b9bb1938 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187196 Malicious code in google-radiant-weywot-rocket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90c66e0686c4618a725de20e95e6ce1715c68327b6ccc280c359a1139312e4a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189047 Malicious code in quick-validate-transpile-cluster-route (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fee10f0bcabc32d9ac66632a283a2ba700f31cfdfd2a8f280a980368720bf754 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187413 Malicious code in hyperion-kastra-paleontology-magnetosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2d31eb3cd862886d18136d81f8bb0cf91c2c741c8992f6409480b516a287b79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187760 Malicious code in less-mineralogy-airbnb-tardigrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1e150649f9701fa8a91531cb8cfe5a7a8a65c99dfd46ea28f5561aad1fc5b44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189523 Malicious code in sirius-scorpius-sirius-parsec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 945110d04861c7ba28d752135fc122c0ded21115150e551cf17097d9fdfb3eb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188993 Malicious code in quantum-child-process-vulcan-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db5c7c674775a7060b2695cecbde40c0352fea9feb3cd9e5e0c26845c229e764 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185633 Malicious code in async-yonder-hadron-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 775c77c14b2284f212027404562df746812937dd230c0e6f51634f32df0c533d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188490 Malicious code in package-changelog-css-loader-slidev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf183518eb8813f78ae38737637f90dad98dce465ad977d4ef42935ed1a8da7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...