MAL-2025-185890 Malicious code in bootstrap-futurology-bootstrap-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b104189a74b27deed81a647b36a22f7fbca02dfd1483495bc1805ff2b673e36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187742 Malicious code in lepton-husky-phenomic-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc8e5f8a7b80fc50583741a5d4fe7563cb8ec3706c4e734dffb7de609c501073 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188715 Malicious code in pipe-byte-spy-fork-notify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fd87d19caaf820636be34fefdcc3bd3a61cd09787dfd04607c34c5c26a7c25c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187802 Malicious code in lint-antares-luna-nashira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b0795e430f9e9aba719b3b6a20ccc0a64f2fccd57f1f4a9b17108037f6fd87d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187696 Malicious code in kinetic-upgrade-pino-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 742650f379653a3093a99f5335ba2cd25cd4c67f9dd90c26b5adb849eb1de6ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190152 Malicious code in view-warn-bash-rain-old (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5b4c467de8a271769bc1a336e123725feaf0bea5e2e1785990ba6cc65d96953 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188140 Malicious code in mui-meissa-technosignature-wasat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 088bcbd88f55c5f1b962517c38e2bd635b0e0cc2f335ed174af96324c80a3a23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187309 Malicious code in heka-relay-grunt-gammarayburst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a34c9f4c51f9fbb8b1a6af7224378de5173d0150c7a5c3399e7e8ddb1e5c9e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186413 Malicious code in csrf-thermochronology-oscillation-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23992ff1d63ebb87f14b33af1af9f888a76886aea879d7893bbf8d971fb1fa92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186373 Malicious code in cron-kappa-bash-serialize-beta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53deafc5f542e358e2be400b3647937108a888871b1dd73316f4f4157605370b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185558 Malicious code in ariel-blitz-rocket-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54cb285d99f4b49e9979cd77120e8d94e6e4991534997b5ca1d327e51aa6b78c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190129 Malicious code in user-route-fast-easy-sigma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7773dddcfb7d81f96523f754ca91e75c1bba334c0c58daaa3e4263791ac88bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187206 Malicious code in graphql-nightmare-css-loader-abiogenesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 827a1eab8ee4f7a8518854247fd592f6a76ba721ba6900d144ce9f687b27a255 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190058 Malicious code in unix-scale-protected-test-fire (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 696a986920e12bc1e3cf84d12a5c637dbceadbbaf002d52fab2ca101305fe795 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190388 Malicious code in xerxes-paleontology-dorado-pavo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bbe070d105e81ca92bdfca6f8bf4a4d5c2018fbbcff99c7a74f916951732f5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185559 Malicious code in ariel-callisto-commitlint-config-angular-install (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cdfea94216d46394d4f07bde016b03bdeedf21face4db3ada1a9424b0a6e4aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186462 Malicious code in dactyl-transform-nightwatch-petrology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6daac7520c355f3e9987d2acb56170e40385b4c9e7bd696c70bd2584a925b30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189955 Malicious code in tool-dotenv-parse-variables-gravitationalwave-luna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d59d0461180ffc4af84262e680f656ee20570181f2683a7d035fc9e9f86b8628 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190472 Malicious code in zephyr-yakutsk-update-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4056139ea2e6931e54f1dbb6be8565d9c94ad19a8e4cc44520c8df7a00ac25f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186749 Malicious code in enif-ceres-request-npm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdd13e00db1b0e02341cc37a68e8140e103a121804f1a8515d8b75918eb4511a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...