MAL-2025-185568 Malicious code in array-load-sandbox-code-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c0b8b8fba52d623ff84606663460a4fbe8b7ac106f45386569fde446edc9b6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187715 Malicious code in lacerta-auth0-callisto-dorado (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11064afceb6e678c2829e4532c2a26703f08758ccc1c624ce372d6c569a19665 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187124 Malicious code in gatsby-tardigrade-hyperion-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 045b9fbb41e669808e8b242f695e928285d9a881632315fefcd95b7b3149f24b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189340 Malicious code in sandbox-kernel-web-good-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30a8cbaba2cc17bb7d2f755e8e246f74bf867556708a1559e09e18f4dfad5130 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189886 Malicious code in test-playwright-primatology-asteroid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0544e601050fea9a8feab1fa188b70994ab675ed6b6a96ef15ab1cf2a78bee09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189596 Malicious code in spawn-miranda-publish-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7abecc7f7e41575adec56452069c9e78b09579af5a2bfa19b17d85134384036d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188605 Malicious code in pegasus-resolvers-leda-mechatronics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d7ee621db29267361daf2de5c6753f45be5ac273e82412dc7ce548125410862 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189153 Malicious code in relay-development-update-semantic-release (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d662cd5ff8760a510c47e6ce2df1e9877f2621026be7db837ea4e53fcf873d18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188239 Malicious code in nestjs-equinox-fomalhaut-mutation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54c0cb4105562e09ca2de2cdc72d2a0eeab9560bb0757df8a660d78b0f9c5759 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187238 Malicious code in gridsome-slides-pipe-socketio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d3041ecadbfa1b9ee20c448a9f21b65c9463e9e394b9f82d5a14402dab7ac41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185430 Malicious code in algol-troposphere-bellatrix-oortcloud (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88490cdb1401356b32291487c355209f19652c109aee91f3a7950f1f3937bc04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186518 Malicious code in deimos-phoenix-impulse-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbbfcd766b1ca1c62a132b5ea15ea096166acfd3fa7ec76d70d8f3145d6f817a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185532 Malicious code in archaeometry-airbnb-mira-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58048d67db0cef8fce7a3b4037d8696098f4aa0f7bfa02aae2be59d7ab5b6049 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185699 Malicious code in await-rate-limiter-ophiuchus-chai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1583797f17b8931350761f69b3d6a8224213ed0a89d3bfece1cf00b321283672 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185539 Malicious code in archaeometry-yaml-phoebe-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 880fcbbb3bbcce9c482ea58ee1f84a2ff2286445d9705d51ab580632d70a051c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188157 Malicious code in mutation-telesto-cybernetics-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e93feef1dbf14cc4a7a5a3b3d8135960ead9bd867f10c2706c5411df97417a3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185982 Malicious code in callback-uranology-fork-rigel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d89126218c63ad6d2218e842a4434823971958bc5a20ea94a407d02e72400bbb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188529 Malicious code in paleomagnetism-playwright-blackhole-izar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a3ac923ef3e0b0386e7575fe8798cedb5b699921978d28e61fc8bdbe8f8eaab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188798 Malicious code in prettier-meteor-mineralogy-vuepress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7db2695a262bc6e69c6034c20bc2c7d9eff61f2b332c8b08bb2467def0f247e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186059 Malicious code in centaurus-biohacking-mongoose-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d482681a1746eaaa1bbde7130dfb8ec74d55c296d84140f66286c3dcaea82c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...