MAL-2025-189665 Malicious code in steganography-aether-on-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a82bcf9484d0efd576c49a8f70274e7b0f9d424b9ac8f7f2c024d1aa3911a92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190381 Malicious code in xenos-upgrade-orbit-kinetic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 22aacfc70714c921495c0072e931272fb84602da273d378a399fb895e36b109d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190233 Malicious code in wasat-foundation-webdriverio-eslint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efd9a86d6be17cbc44f9dae6883bbba2e3a38738aaf80a503bc35aa86bebe5a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185635 Malicious code in atlas-browserify-rigel-mira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c9a528d585d1bd68f821a97b54d3810ac0f7fb130157b2815a5ecc843be8df9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188921 Malicious code in proxima-thermosphere-weywot-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2244dab451a96c625aa78d793fcb3ba1931ffe5080498587c46c6bbf7f5a3d62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187774 Malicious code in library-bellatrix-cli-cors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc1df04aae6a025d35e24d1c99352e79b2f30d9b4b6ff361adaaeeaa36618854 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185881 Malicious code in boolean-zeta-fire-omega-lambda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2cb7f8a6641e0545bddde60dbe3e670dbd50d4ad1135e2b340018411b59be59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188490 Malicious code in package-changelog-css-loader-slidev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf183518eb8813f78ae38737637f90dad98dce465ad977d4ef42935ed1a8da7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188381 Malicious code in oberon-mdx-hydrogeology-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03f7ec2bd6822ff1708b0250bb0c57bd1da996bc00fe5b964037082fc9942ea0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186283 Malicious code in configstore-eslint-config-celeste-archaeometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7ff2be312dbe53596418e1544834aeb2755f6a4464e54c7b5db9c56439d0aff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187676 Malicious code in kernel-encode-benchmark-interface-virtualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76380f75d8ba6f59ab05dc5b0107949199b7af150de9616738aa35c5715dc30a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186522 Malicious code in deimos-wezen-parsec-transport (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4367c9173dd0932914381799df03057fc34021e6580643e35e3ac7264eeea6be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185618 Malicious code in async-eta-try-balance-java (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d16ce88a7db07011ebd02f6deb6abe9ec27e30f28d503c3580ab35c829a94c70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188443 Malicious code in ophiuchus-sirius-biomimicry-loop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e45ce8844de7229c6e3b1f202362891d12e2560189c4b8bf013df80c7454030 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187709 Malicious code in kronos-pipe-delphinus-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 960c07082250d878b37b3a5f9a803c37008c32b0ac7d9deefdf8bc4284a2bc8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189279 Malicious code in root-fire-user-hash-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d661d39558df81fa68a4a36b87bcf5da9ce98e30924826a802a862aef080e2f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188989 Malicious code in pyxis-enif-wasat-borealis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6360d976d2a538b3cac4e6a6de90d4745ca11d9890d84db004a268b40fd52e11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187124 Malicious code in gatsby-tardigrade-hyperion-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 045b9fbb41e669808e8b242f695e928285d9a881632315fefcd95b7b3149f24b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189932 Malicious code in thuban-charon-uninstall-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 743ae6cbbbc27159bd1e3230d2f79754bd82c0b625304d5cc5285d043d6b7002 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186747 Malicious code in enif-axios-schema-biotechnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1aa20538098eb6552d01fad1a88faa22ff2b7e24c3c19f05a7101d9ebbf5dda This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...