MAL-2025-188310 Malicious code in node-config-private-zenobia-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c726f498d965d5ca0aa4bf03817a0858351167b13332a7cedf47df996d3a0ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186996 Malicious code in flare-ignite-graphql-eridanus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b3ee76870be82d97f3eb5d63d5d9fc0339e9009a28b02be76c1b4a0f44944d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186664 Malicious code in earth-omega-epsilon-error-compress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 947db336c7842edab7a9506dd0ad7679dd256b4f6583d8acf5c916ea9a792645 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189351 Malicious code in sass-loader-canopus-mesosphere-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfd6bbcda59d091061be1dc396ddc1689c6765b89ec42a4abe98eb51e16a4fdb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185655 Malicious code in aurora-nodemon-whitedwarf-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd97281221fe89d74fd42bfb63573c9c1be04ca2dd3dff73ddf81fe566bffadf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186675 Malicious code in easy-serialize-omicron-mu-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69139970a915ceb4235e38acc7b982f8685dd4a844c2ea07bc4144d8a42be7b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188946 Malicious code in publish-antimatter-augmentedreality-hawkingradiation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0d5d6b123e34a8689a89de8c4284bac809a0af916cf5f51956e0bb8bcf35c67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190368 Malicious code in xenon-apex-ultra-zenith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d255eba690342099284d8bf8a8103b1b72404c253a39810bbe3abd1882f8030 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189229 Malicious code in rho-alpha-phi-cluster-water (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6e7a4ef57dd54f76ac6aa11467b48f4f5cc687a1a46e1934d0b1dff8c2cf4f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188020 Malicious code in meteor-deneb-phoebe-paleoanthropology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e503587813565ccf9b93395be34e61ce05fd7b6a71e5c4f6f1bc95a90b27696 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186642 Malicious code in draco-quasarjet-envconfig-technocracy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e035ec30a3e6a4899aece76133701fceaa81f84eb4de4b1f3e1a6500c33e84ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186370 Malicious code in cressida-prettier-plugin-markdown-pulsar-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b47904204a0330a6ee88de485827845d0e3e0d640f5d1de7eda6c95644ce085d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188162 Malicious code in mysql-joviology-eslint-config-exoplanetology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 643bafbeb2dfc79283955d0c21bab2fd71901ce97f885b0030161154a433103a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189655 Malicious code in star-private-minify-bad-compress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c073ea8c71ff7c1c682370bd5c071b312cff6ebdf04d0b7966fe8d9f0e529a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188384 Malicious code in object-chi-yaml-authorize-zero (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34beeb136dccab96c3b1fb568433900d04536d8ac74ee3478fa87a4b3bae1716 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188378 Malicious code in oauth-neptunology-lint-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95c4cc16ff1626173c0195d83335a1da888d78e5e7a6f5e830831b1ee8647d3a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189603 Malicious code in spectron-chromedriver-thermosphere-cosmogenic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c15b55ba7e54630255482e6868b8f640f70daca32947947e5ea8822a50d97d43 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189665 Malicious code in steganography-aether-on-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a82bcf9484d0efd576c49a8f70274e7b0f9d424b9ac8f7f2c024d1aa3911a92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187905 Malicious code in magellan-neptunology-extremophile-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 253a620c17f19c1814d5c8fd8bf86e3437e5d6da93e3ab045fc1422e186796cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187613 Malicious code in jovian-postgres-webdriver-mocha-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ecf3fd1d508e4debb89f36a79eb6c7ac29572b4b9404eb582a72f90583c8daf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...