MAL-2025-189899 Malicious code in testcafe-pegasus-neptune-remark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac5221cad7cd712e89acfbcde1dd98b932035fd9b6052bfe6f8122e1b304bb29 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188668 Malicious code in phoebe-borealis-vuepress-coronalmassejection (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deaa586f7a513b8036116d867f85c2889429e1affc2ab69c5e417d09987ff2ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187341 Malicious code in hermes-browserify-alphard-greatfilter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e30708db9226924c56d46254043ab17828ef65f1ed22ce45bc6353202adddb3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186454 Malicious code in cz-conventional-changelog-heliophysics-carpo-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87b43b39469f3044ffca305f0206cc9adcde03611a0fd8cf39b08d0230171522 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185516 Malicious code in aquarius-relay-pulsar-eslint-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67d6ae11b1b219ec043fde6f59f5ffa676d68e76745da39cdef38ec9ec99813e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189664 Malicious code in static-view-warn-cluster-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8959878fc66db7bfa787bb8fb77224a14a0c6f77599a8ba842e95e295d4466b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187339 Malicious code in hercules-radiant-jekyll-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73111aa503221d795d0710ce76a4fd9d59a208670ee93ff17fe08fbbf0aafb19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189281 Malicious code in root-resolve-wind-stub-interface (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76745c37e2effb609da0372dbe196b1268ae5777b04442b99e59f3da1c499739 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185380 Malicious code in achernar-hermes-centauri-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eab22301bbc8cc3305c04124149153e96718f5a79c8fcdcd1f4e7e2d96ec6c23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187954 Malicious code in mdx-kaus-browserify-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c35c481bdc9c3cd04791a4bd2aea3c97faf1ab41752bdeaa06954b53da493801 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186282 Malicious code in configstore-centaurus-writable-express (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b4d2836adf3fb394b565c00ce08f4b87b9bb6ed7d0f8a9228fcd46d24a9735d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185797 Malicious code in betelgeuse-perseus-despina-radiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba22f0c594d568d54e12967d841c787fd3e71573d84357c6a218f291e91747a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185504 Malicious code in apollo-ini-grunt-radiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c48d74220a2eebde40d0798cba3ab887af5402c7d0e4d32cb8683107a6650af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187774 Malicious code in library-bellatrix-cli-cors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc1df04aae6a025d35e24d1c99352e79b2f30d9b4b6ff361adaaeeaa36618854 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185745 Malicious code in balance-public-new-object-nu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e4bc6026cbccdbd46d399f7ad4ad79e78e3f51369f9d5a0619d82b3a0f75f5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187658 Malicious code in kappa-lambda-bundle-omega-bad (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b3516bb36d404921aab8ace5bf2b731d171a18c77988e5770e5d3d3db842d08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186351 Malicious code in cosmogenic-genomics-scripts-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ede3ff97afc807cd5b2f66f1660a934b572b18c219fc1b17e91ba7f10e09e5b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190355 Malicious code in xanthus-dotenv-safe-markdownlint-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65059d3c138e66e932e624190cf09688f2f69178722bd6940b7cd7ebdb558347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185392 Malicious code in aether-mui-postgres-mira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffda47166b625e26114e1aebf4cfcdf0ba36e5dc18a49ff0d9f0de1b5375abee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188851 Malicious code in procyon-yaml-figures-toml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f7740a3ced9536b2d669360d3d0007870b01aeebbcd11690bd66779cdad44da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...