MAL-2025-189885 Malicious code in test-on-spinner-docusaurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93b3148fad24442f075c8707e11b5a5bd042be189f67c373b76d73ef2f18c289 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190244 Malicious code in water-user-fast-sanitize-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17601b4893c68eab5aeef268b3e08ec5b4809b4f32300ca5ce4cfbf32c530150 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186267 Malicious code in concurrently-grus-vuepress-zenith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7074c66c67ba8954226ffe4caea4be815b7cbdb15439e2f2e1a589d8eab0e173 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188384 Malicious code in object-chi-yaml-authorize-zero (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34beeb136dccab96c3b1fb568433900d04536d8ac74ee3478fa87a4b3bae1716 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189248 Malicious code in rimraf-quantum-csv-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9909070a68830c6d663c79812a272f46e552253bfb360b94ab3ec3234e687778 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189453 Malicious code in serialize-minify-decompress-mu-cron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1746b39844b7d17daa12b977f8d00dbc6391d85c4c41c6d6de6c58b2cbd8c66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186433 Malicious code in csv-puppeteer-phoenix-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 374bf3eeca6aa7f97f05cedd4268ceca21f16e8c36c450cb4fa2c17ac2ffd1ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190431 Malicious code in yildun-blitz-miranda-accretion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9aa6adbd171001d6774e9c0faf6981e1b8230bc776079be2918fc0071a823fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190118 Malicious code in ursa-testcafe-innercore-planckscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dfce035eabf7825c0a7f26269b5bf0b12829681278f18b5eadef5359a7fca39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189107 Malicious code in redis-browserify-nuxtjs-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 711d716900670192f72189f880361a7e02ddd5ee99dcbecd1465b28f95bee624 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187821 Malicious code in lithosphere-changelog-grunt-uglify-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4b28e3e1e6b068cb69bf52bc1258cb4b9e14b392caba44b8a421e3b654326c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185479 Malicious code in antd-playwright-ichnology-technocracy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c68692941d88ebe215bb0d8b8ad358a855839c7d267716798d4924516a6e1de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188340 Malicious code in non-blocking-miranda-gridsome-cosmicray (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78ded373441292494a43935f760ffc243265ed07283b7797b8afa7f81f2530e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185384 Malicious code in adonis-child-process-pegasus-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3209c8b1de00a411a153a4f8dbe6ad93c7dd53375702b75897914da7bd3baf36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187666 Malicious code in karma-cross-env-mocha-grus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc707037d54ddbddf16b2cf0245a7546cb636b2bd26cc4ef826e23f5433923df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186833 Malicious code in eslint-config-apex-hermes-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f73ba82f9d9c22e1bde2447c605b7f915aaa35732f226fb83172e499f027a621 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188117 Malicious code in mongoose-wolf-deimos-forever (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 278e4a12ef49eb23953dc1bea73ef37ad5b5174a325aaebbabb2faba7c8c204b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185984 Malicious code in callback-zephyr-semantic-ui-carpo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc3ae303ee981c1075c7fce2279b092cf996dc5af84dcd3a3fbe2c0c2f2810e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187252 Malicious code in gulp-kinetic-mongodb-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7878006d6f8f7caa40ce0daf78b2c246cba2cc4a065213449dfa1b7d77e316f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187968 Malicious code in meissa-foundation-plutology-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffb74fdd0e4a61807045f718c99625afd464a52402ba71b86bbc5cdcccb57d78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...