MAL-2025-189948 Malicious code in toml-jwt-docusaurus-celeste (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7137e5c7ace789bdd6841a632b7672fbf80556d0ed465fd3a20160f1b2d3d500 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190339 Malicious code in winston-polaris-rollup-despina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50b576fdd56ff9baf91a0925f161f1f9f2f899f976ae949c93d85a8c5008e76f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188407 Malicious code in old-import-decode-table-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3318615e0691a5ff419704ab106e4bb388891cfde25ae060e932dbbe49b4332 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187561 Malicious code in jabbah-colors-parsec-chromedriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb186f675de9916b8f536619d22cc0e24c1fc3e1dfb322b2bd221b7054c1bb08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185380 Malicious code in achernar-hermes-centauri-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eab22301bbc8cc3305c04124149153e96718f5a79c8fcdcd1f4e7e2d96ec6c23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185974 Malicious code in callback-elara-hadron-jekyll (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c5e131353d5f6106fa2496e00f7ad443ad3e792fa0a1d9faf3e536b245446df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188708 Malicious code in pino-pretty-radiant-less-loader-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56f26e9ea5896df0ce372833130544656e3589f313b17873c4069dfdc07eab2e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186996 Malicious code in flare-ignite-graphql-eridanus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b3ee76870be82d97f3eb5d63d5d9fc0339e9009a28b02be76c1b4a0f44944d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189440 Malicious code in semantic-release-webdriver-mocha-holography-init (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b794ecaca7722f541231d8309e4e5bed08b390b392a6810c0def39ca7ce18f93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188443 Malicious code in ophiuchus-sirius-biomimicry-loop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e45ce8844de7229c6e3b1f202362891d12e2560189c4b8bf013df80c7454030 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189797 Malicious code in tachyon-asthenosphere-less-loader-dagda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f21c3181d7e1225e94cf6ec96aac89e6b7e7832996548331008eb289be9aa746 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185980 Malicious code in callback-typeorm-venus-umbriel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aec581ec2aaeb93e6d9e2f1e491d10bdd4f46293f433cc524700fd81c2395f56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186859 Malicious code in ethology-ophiuchus-slidev-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c2f40a4b4e432786056beb60a86f5a1aae0069cd01285d04f9d578da7fe9d95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187341 Malicious code in hermes-browserify-alphard-greatfilter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e30708db9226924c56d46254043ab17828ef65f1ed22ce45bc6353202adddb3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187339 Malicious code in hercules-radiant-jekyll-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73111aa503221d795d0710ce76a4fd9d59a208670ee93ff17fe08fbbf0aafb19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189899 Malicious code in testcafe-pegasus-neptune-remark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac5221cad7cd712e89acfbcde1dd98b932035fd9b6052bfe6f8122e1b304bb29 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186606 Malicious code in dorado-hexo-sqlite-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a4a93ae9c0b359cf320351a3af5fd7016688cc60265a5c221a86d43cd0faad3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189238 Malicious code in rigel-miranda-cache-cz-conventional-changelog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f24d18ebd38c79524545d193434c68697eb21e47a21abb2e7f108ae969d00566 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186205 Malicious code in colors-nightwatch-antimatter-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45bbc42bfa0d26b381b4e233ad4e21cc124d0cba8b19be2bd2be1cf86e922a6b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187417 Malicious code in hyperion-sails-accretion-multiverse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 691ebea865657e2348a842ab4e8c7344a5e72132a9b13e560bc80473165480d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...