MAL-2025-186601 Malicious code in dog-book-protected-scale-grid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50e2dfc946835cb804fbf4f49f9dca6adcc7592bdd9880a1b5fc2f3e866af4dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186830 Malicious code in error-validate-refactor-byte-lambda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e7990422b33800950f82b858c49bc8d9140dbd49c020770a8373607ea132679 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187423 Malicious code in ignite-callback-cosmochemistry-paleobotany (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f4aedcf4678e453f6fbdfd6adbf5945076be8b34eb44f5e0b9fb8ff3244b536 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187490 Malicious code in inquirer-resonance-stratosphere-zenobia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8045888615086dcf573d963c334214b9b8cb76ab93a54114cae959a94c16ed66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188178 Malicious code in native-electron-builder-nashira-tachyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2c326aa33890289362406cb0f22eec8401d0b31d237121e8667b24eaa89de69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187277 Malicious code in hapi-prosthetics-thermochronology-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3945b57156407a7defb56a483e3d506c0a307663ac840d78caefe669db00c55b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189960 Malicious code in tool-webdriver-mocha-prettier-axios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0202e0c6d5116df45f3fbcb466f9f4469417db5a0a3a8c2d51725d491a76e674 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188490 Malicious code in package-changelog-css-loader-slidev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf183518eb8813f78ae38737637f90dad98dce465ad977d4ef42935ed1a8da7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188295 Malicious code in nightwatch-server-pino-pretty-cz-conventional-changelog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77f606edcf51cd59fa77cab6f6134dde8ac83af12b0555d7ec2536fe43ec5b82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187021 Malicious code in fork-omicron-socket-easy-array (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09dec83f01fe45716ab73eaf8f7a24f32dbc73e07c2b87df02a03f006c0a81c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189132 Malicious code in registry-ursa-prettier-plugin-markdown-framework (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bce70a60b982911ae8463ded8b5a8cfc5578f573075e24291265f231dd7d8f9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188278 Malicious code in nightmare-start-meteor-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01f618ccad5555d0a076b5f790e8c22ef5540f29809db86a35b06261b90dc6c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187743 Malicious code in lepton-pyxis-aldebaran-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7ac111d3e6fc500ddc5ca2ab07f3063deb4b5b06109ccea86cde45a3ed2bf24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187327 Malicious code in helmet-release-it-enceladus-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac31376fc97d374897aa40e11086913141414c12cb08ebf5b53dd7f29a6780fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188141 Malicious code in mui-neutrino-nestjs-stratigraphy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 729cb919a6d87c0b891badd0fb0662a70c219e865dc84918201050bdf454babb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185510 Malicious code in apollo-webdriver-manager-jasmine-wasat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab09b1b5b69cdb79894f81b1757af0992295947fae65208dd818da8f3817a483 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188264 Malicious code in nextjs-html-webpack-plugin-express-gemini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b3221eb423eac0b572d326e1984f49231a18c9d5791b59c0f4a62fa33add06e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189749 Malicious code in supercluster-grus-non-blocking-lepton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e73d9f265923611595f2bf95140778a1427bfc078db498e7da9874c1aba0f7d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187957 Malicious code in mechatronics-arcturus-puppeteer-capella (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e1eaa9f69cc53c02498bf1eed85f24aed05f14f42b3aebd1070fcefaea74066 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186001 Malicious code in capella-tethys-lynx-antimatter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3bd723d35218da7f1893c877e9a4ed4feb0ca1f191e3971ab7cc91e3f7fe418 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...