MAL-2025-188980 Malicious code in puppeteer-geckodriver-redshift-eslint-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13eee7e60a6dfa0e4c6b1091d856e3478c1e254bac890f6a2f95ebf2ccb71ea6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in toml-terser-webpack-plugin-process-prompts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 108235f2670a8c48b92eae1fda9fbf2849586da19df4677671f9ef5128bb5219 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in radiant-toml-primatology-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26e736c0f15dac33a2a045f08b15563499e027f9774ffeffc83ca24ee39b69a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187109 Malicious code in ganymede-public-canopus-hydra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8666d987c2ffe04eca9ec038bd50b9769fb0d7618dc1d35751253b44ab3d5d39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185591 Malicious code in astrobiology-loopback-hermes-duplex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86c1988f451cfa884062cc5ace32bd4d584c3db831f89eb5d23883e30f4780e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189365 Malicious code in saturnology-titan-solis-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ac9c08c9f27bb03650f8aacbbcfb13a60b7694d383429b9b3af11edff258327 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185385 Malicious code in adonis-comet-sedna-geomorphology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 337bca060b6e0e2d205280cca27089440473dfbf815ca59cb70305a3995b1f2f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187145 Malicious code in genomics-biohacking-xanadu-cross-env (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3db31ffe47d54cdaa5a7c3fc25c8f9613c3d1667e57a7e9a8b85bfbccb19d791 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188360 Malicious code in nova-virgo-jasmine-redshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58861c5c536b49fbdda4e8bf495e52ae8eea5685b547b5cb54e6d2c7f17b20fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189784 Malicious code in sync-decoherence-xanthus-express (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 302cb9295281a82475b3d087e5c9d61e6f97dff44cc081a850b4044c5e0991c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189828 Malicious code in taurus-heliophysics-commitlint-config-angular-superposition (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3142a8b96d0c8015bd6d17f6e9038ce57ea590fb830bea588d1c9105ba3e48ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186702 Malicious code in electron-nconf-callisto-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc90748ea64a281a778df79da5f5d78d8439ba2ac5dd54761b15734e56d7aac7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186988 Malicious code in firebase-command-ursa-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acd3d6a206ba901560c4623937d141df01d36bf233f95ebff438b1128f0840d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186685 Malicious code in eigenstate-electron-builder-despina-bionics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 856bb07252bfaa1fdcf360cabcdabbb8244d7be52299c195e584d92372aa55a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188563 Malicious code in parse-array-slow-emulate-notify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79730effee3d6d0c7142b05c594c736477c5c548260feef0b81f2fa621df42c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188370 Malicious code in nuxtjs-enceladus-miranda-jasmine (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1b43759d17c66985697b3c9e19ac0173377814fe579478b446243f3da452a55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185594 Malicious code in astrochemistry-aldebaran-update-antd (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f153e8f9ce57b26ed2021c54f7589a72b6eb21094b47c5a9c67c165ed436892 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185960 Malicious code in byte-runtime-easy-promise-transpile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 325875c77ac94cceec81e2be9da4d8c3435e647db500e4d50cc6529b1dab65a0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185929 Malicious code in build-hapi-registry-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6d83f597fe639d7acbcf9e97540b25f2a624333b18013c7061e016e06fa331d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190218 Malicious code in warp-asthenosphere-ganymede-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8a92ebd310cc475e2b9ba6eae8284cedf4b60c8bbc57a74d40d2b6dfbaceb30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...