MAL-2025-189886 Malicious code in test-playwright-primatology-asteroid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0544e601050fea9a8feab1fa188b70994ab675ed6b6a96ef15ab1cf2a78bee09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187791 Malicious code in link-emulate-double-table-book (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f82ea3cfbf4ead6d879ce2cf3a4148b644434223de5718844f6f514cef0a842 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186562 Malicious code in deserialize-book-cloud-awk-finally (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13e29d51b7d8b9cd4caffa0769c0027c85af91ff8a9b069bbc6d9e639050ef36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187245 Malicious code in grus-pipe-websockets-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e908ab5a9f1588062bc9ccd9e3447dc656308f6a5f76ad9232116d8165cebad8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188717 Malicious code in pipe-cz-conventional-changelog-meissa-canopus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f76581a30ce1561ccc8aff0c4f6f3ecc981e5d814d26ad12af5b54f32937a161 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186548 Malicious code in deneb-juno-virtualreality-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8ab08056ce07e4b0fa7e42cc1a807d96b6b0be4eece882b85ff70488bfca3f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187795 Malicious code in link-sedna-paleomagnetism-npm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89f83ee1bfae66dc7210489390d14334111a3890b2209f274fdf0e50672ecaf4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185699 Malicious code in await-rate-limiter-ophiuchus-chai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1583797f17b8931350761f69b3d6a8224213ed0a89d3bfece1cf00b321283672 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189356 Malicious code in sass-loader-lepton-nebula-virgo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a989216a806f4fc710f35ceecc76f72ebca9e42cdda321d10df6910124e480d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187860 Malicious code in long-nu-new-nu-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f181626cd1e58ae54d5a7e6958edad8e897a4a8cef1412d594b4d7f983ba163 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188011 Malicious code in meteor-australis-filament-andromeda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82d038323a86465eb976d3950a5e25d222716df1de1bed41c119a8f11b7642f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187065 Malicious code in fusion-inflation-dactyl-webpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afd7df62b134bcc7afb6138cd72c0148fe9828de23d7012fa0e5c0c2047e9063 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189960 Malicious code in tool-webdriver-mocha-prettier-axios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0202e0c6d5116df45f3fbcb466f9f4469417db5a0a3a8c2d51725d491a76e674 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189071 Malicious code in radiometric-nova-rocket-transport (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ca38aecb47598dcff305898e0ce7687de1ab15863e927bbeba1da96300fc7ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188324 Malicious code in nodejs-cosmicweb-chakra-ui-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93a5092226cfdaec9107ff680820108c965f38859cd60ac2915fa0552cf83dbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189747 Malicious code in supercluster-entanglement-firebase-multiverse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8aec89289aeb2a352ab42fd6e356c59312966fd6c9104b331eefb6c970f7fc32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186518 Malicious code in deimos-phoenix-impulse-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbbfcd766b1ca1c62a132b5ea15ea096166acfd3fa7ec76d70d8f3145d6f817a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189694 Malicious code in string-crust-exoplanet-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 607e2f5aeee990d1d2e3b76b3468cde2ee84ab17224b598c35f9804f65bcc526 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188401 Malicious code in odin-nightwatch-singularity-gravity (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d3c3514c74c10761cf5de7d75f8f020b9df8cedac55d8dd56c69d1470045cc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188202 Malicious code in nebula-development-less-loader-achernar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8176d9ec969819536ec693125456e7ec41bb0dcc6c65811409b1a99ffb0fbf13 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...