MAL-2025-186601 Malicious code in dog-book-protected-scale-grid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50e2dfc946835cb804fbf4f49f9dca6adcc7592bdd9880a1b5fc2f3e866af4dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188115 Malicious code in mongoose-odin-rimraf-petrology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b3175aa112348afdfe90cf7021d38d6aa613445ca9d922956429700ee421e33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189521 Malicious code in sirius-registry-webpack-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c310c475846e8ee5e7c18a1b32e566c7929067fa02791639c37510e9d7820c0f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188174 Malicious code in native-blackhole-parcel-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a471cc517289478a545c2d4f578f4a0270138b69edff1c911bc1f622c60c9c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186433 Malicious code in csv-puppeteer-phoenix-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 374bf3eeca6aa7f97f05cedd4268ceca21f16e8c36c450cb4fa2c17ac2ffd1ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188730 Malicious code in planckscale-lynx-global-transform (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d3a6f504f1e5767dfec6a0695658c17cb181816e481c901e238aa4397ec5924 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185699 Malicious code in await-rate-limiter-ophiuchus-chai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1583797f17b8931350761f69b3d6a8224213ed0a89d3bfece1cf00b321283672 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189466 Malicious code in server-redis-umbra-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70ad1596bcc3e80829a1c46d11fe776c209f88cc4388e02ed286d6ad1976e9e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186079 Malicious code in chai-javascript-pulsar-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e42433738cc5a2accb6a2b35a72082ee4ac69aa8f58a357c9658e5819a94fc6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189001 Malicious code in quantum-darkmatter-native-schema (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df4b7d2e949c0c56d06fd440de24261c533ae34fa972d0a9fb8cd3cce716c207 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187721 Malicious code in lacerta-polaris-tool-resolvers (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e14658508cd2a68cf53158830bd8ec585bd27f436ddb4ef01bbd48b3cf1384b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185525 Malicious code in archaeogenetics-ganymede-paleoceanography-ignite (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 074f632db2abe61d259b3bc4c1f8b0dace7f1c727cfead5c4c2611a7642171c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189179 Malicious code in report-easy-fast-star-grep (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08e344a2c581a34f772f67b04c94121c2f5eac9b9db0669af25db99e4c58e086 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185804 Malicious code in big-star-kappa-alert-report (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 277bfd448c229fdf8fe8efaef8c464ce08c287881a335bccea1a5f1dfa93ac74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185852 Malicious code in blaze-farout-module-transport (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4192d7aeef77906c60bb34e7bc30349a3cf23117c8fc3d3afb6d6a2a96bae8d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188921 Malicious code in proxima-thermosphere-weywot-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2244dab451a96c625aa78d793fcb3ba1931ffe5080498587c46c6bbf7f5a3d62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187327 Malicious code in helmet-release-it-enceladus-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac31376fc97d374897aa40e11086913141414c12cb08ebf5b53dd7f29a6780fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187750 Malicious code in less-cluster-soap-firebase (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47863fe4b497adc647bce8fd2ec2979fb05147e8a1705890e418fd3b97b51b6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189099 Malicious code in redgiant-callisto-altair-npm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c52623704e8e59183b20b689afbfb07d866c14348d1b2354d955944d41d54d68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185396 Malicious code in aether-radiometric-sedna-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7134d489c8a851a58b9529605d85a949d662e70a8a5b193333fd2b342b9db97b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...