MAL-2025-190014 Malicious code in typeorm-csv-troposphere-socketio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e73547aa88679589280af7f97832cc643441c415a7b0c69aa00448db76023b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187245 Malicious code in grus-pipe-websockets-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e908ab5a9f1588062bc9ccd9e3447dc656308f6a5f76ad9232116d8165cebad8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186598 Malicious code in docusaurus-thermosphere-aquarius-rehype (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9cff65c97dcfbf5b82d994578654a3152ecc637488be528804a85e738be615d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185370 Malicious code in acamar-child-process-oauth-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aecf9405e1356b230c3b5e02f074df3b4d1c15deed220a1ee0fa696389b7d321 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186535 Malicious code in delta-sun-psi-new-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 374cdc7d058badce2f6a42696c611854a14f6b677f5cc78ec1c95958aa1ee55b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186801 Malicious code in equinox-sedna-sequelize-convict (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49d21c1e2f37e5e821a84eed480f80f27b364ea4e2b3e2b5cc5e1d16499a649a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187452 Malicious code in index-grid-unix-long-kappa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fd6010b07fa983c3e40a12dd19c6d425704d8d363446d1557f67e28cbcc8d3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185582 Malicious code in asthenosphere-dotenv-darkmatter-chromedriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c69657448b3b6a02182e970bfbecadf73fe036e1a80d496d9efe2ead57291f4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186238 Malicious code in commitizen-antares-magellan-saturnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b1c1df5aa59f1547dc7c7f609cbd53203e8a2d44e63c739099244c9ac7aa5e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189348 Malicious code in sanitize-module-pi-code-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ede5ca909182567ae828158a0cfecdece92da6f9f59062cc498e698ab9cb46c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187494 Malicious code in install-bunyan-bellatrix-impulse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a994bccd78ecbeb81c15af8e4727f8c01f253dbf13a5e2cd0e0a51b1d884c10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189964 Malicious code in transform-ethology-weywot-style-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6827172d705088dbbceab6e5d571e982778c40522594d4b1769be2151dd4821 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186887 Malicious code in exec-local-mongoose-dione (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b872afd1ac291d4ad9a6557070b1a111c63c386c84d16d9637c174bb6e04f49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185633 Malicious code in async-yonder-hadron-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 775c77c14b2284f212027404562df746812937dd230c0e6f51634f32df0c533d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189358 Malicious code in saturnology-astroinformatics-release-it-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b3567225aede0b7578ed93233235ca67fe147bf5c5093c18d0dac200a90c12a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189030 Malicious code in quasar-element-ui-radioastronomy-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27a3811741b6285b2d7b0430d975d16142e4b827c8530282d57283e7e371ec6b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188080 Malicious code in miranda-native-cross-env-oauth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c98691086a9cd5b5817eb65f3e3379f8ecc8cd6c0265c8261ec01e76d2f7d4a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in envconfig-apollo-dependencies-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc6efee11ebc8382fbece0fc1803392ff0837ae4af2341841d4b417793e252fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188259 Malicious code in new-promise-compress-compress-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3261b6dfc0b0b95954bd9bbb403103d9c6d365e8c535d3e69bcb60b537fdab7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186345 Malicious code in cosmochemistry-gemini-release-it-neuromorphic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c41718fd69b8698a75fab60d886012af544c433ee2dc1ff773bf84cb35cfa684 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...