MAL-2025-188899 Malicious code in protractor-hercules-xenos-webdriverio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29d84f5886e98b783c79bf948e8dc881b642d93250a3318b5a585f4336a1d038 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190170 Malicious code in visualize-cache-web-float-slow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3f7f24dadcead52f45d3b13c1e58579d94e0015bb0a26dfefe06ac153a45caa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190481 Malicious code in zeta-permission-beta-short-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 150e97326cd1d07028267b635aa4429aa6fd26cd6649457e7a1bcf41e904538c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187675 Malicious code in kaus-triton-sadr-aurora (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea9faf4f30b1aac05c7e7a00fe9b84e14833a19549318de6dae1371066e68ffd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187922 Malicious code in markdown-cors-janus-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ab8745a2c08a63be222f6fec9a081416e65831afc979c6869d1f90457518dff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186535 Malicious code in delta-sun-psi-new-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 374cdc7d058badce2f6a42696c611854a14f6b677f5cc78ec1c95958aa1ee55b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188394 Malicious code in octans-yakutsk-dotenv-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d751656f2ac7efe86e47c25583f93d9ae1536daffdceaf849d3483681ba1dcc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187482 Malicious code in innercore-alphard-eslint-config-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5bb6fedb6eab21c1fb95291b854bc86128bbc9a7c3770dc6e09e72288e1eff15 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185961 Malicious code in cache-cat-index-async-small (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7e9349b68caace5888139d6b847199008fcdcf3f6ecac1191d7bf29cd1b8790 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189588 Malicious code in solis-chakra-ui-comet-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c944e50187a88c0aa55f68b8a6f137dc34aa9a7e65fc342d26e2ab27158f1c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186985 Malicious code in finally-stack-error-cold-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 851d0023f1b630511561a3a8277fcd85b55a566b9ea984b4ba5f4e35d51eb296 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185715 Malicious code in axios-neutrino-fomalhaut-perturbation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f428902c9048480558a598f879ec355d21f923763d3b297f190013b90c371cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189958 Malicious code in tool-tailwindcss-cosmology-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 024cbd055f4aa386cbd24118ce725f651db3fc425f37acf6453c7e535d8d1d1a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185875 Malicious code in book-web-deploy-object-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e707ee8e6a7b157de7f049f46c37a2f9de5d01555279c9b19fe13e51bff46327 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190391 Malicious code in xi-grid-module-sed-warn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a634fb198cf4383219f1b5b1c69e64a93187d6e1183e224fce675be68543101 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187469 Malicious code in info-user-wind-book-sanitize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d4dc5a534fea20aed19a4422309665c2027ecc15737ec3222b93f3a598ec91f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189351 Malicious code in sass-loader-canopus-mesosphere-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfd6bbcda59d091061be1dc396ddc1689c6765b89ec42a4abe98eb51e16a4fdb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186218 Malicious code in comet-oauth-airbnb-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d9fb8279f61223224e9fbdc329b569ad93d0e71610a041f12d1cb85156c9a10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185744 Malicious code in balance-dog-throw-balance-daemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8e2cf175dfcb256e4e04e8d82f344e971002226d736740c3e3050cf4aef44a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185850 Malicious code in blazar-quark-publish-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6051df5e76609f10fbecf1f58e20ad09d8098ec4fed4723d9a81bca13555b27 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...