MAL-2025-186077 Malicious code in chai-got-pino-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d4038eb99c7a3c61857cd8ea91f7024e5f1510152d4f3c6577ad77a0bfbd3b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186465 Malicious code in daemon-function-throw-file-dog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5a73e261a4f17a185bcca6a3ab3abc503be436cc2631043966eea2b64c29a97 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187849 Malicious code in loglevel-exobiology-eslint-config-rate-limiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd7fbd22a1e96b35affa0f148afd128f06a5c0bb44fb6a1ee53d15e319543f2c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189465 Malicious code in server-publish-ultra-ultra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80a79a38e0a196ea73bb64460ddb5a414d0daca9ff3b5f70eb45ce4fc3959871 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189601 Malicious code in spawn-venus-hydra-cordelia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a66e971fd14bdefb13ffa29893acb4ce63a7232109a3f4246fc26be70ddc6ca6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188010 Malicious code in metalsmith-xanthus-react-bootstrap-sequelize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c249cc1d9495c472c96febcbb4aa5275a3ddc5edcbc067eb482c1e37aa6b7cb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185801 Malicious code in big-data-shell-omega-reject (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1244a9ab9c9072bd2cac6a3da7e782a4d9ed85476bd01eef9825f23de4c7478f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186245 Malicious code in commitlint-betelgeuse-yaml-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1334745017722dbf527ff416d1e9f97996036c5e8c403d3a34945f517279cfe4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189867 Malicious code in terser-rate-limiter-xanadu-palynology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a17a13c04a5971cb4246fee444cc08d23000846a1ac3b1116dcbfded9d002347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186220 Malicious code in comet-perseus-andromeda-terraforming (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48aafdc9143f2f03e019398a2f17e8554586833012e56e2e3ea753d55afc6471 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186658 Malicious code in dysonswarm-apex-graphql-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00edc1420ef60c8781c29b4cfa9b3d8d0e4928fb48176c0fabe627e881d70830 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187223 Malicious code in greatfilter-process-mutation-crust (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3971c42a927647f77a1da4f4193dc48dd00e19eefd701b7b76edfdcb982e05a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187125 Malicious code in gatsby-upgrade-aldebaran-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73c001ab99214b4662862b263eac30593a78748adb121c5de870d37a660239fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187272 Malicious code in halley-unuk-hyperion-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c9506d8e26da1a023822ac60bbd1d414afd9ff2d27728755bfac524a22a8579 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186717 Malicious code in element-ui-oscillation-higgs-solarnebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38683f7559cc2060493cc18044685d93cc8bb8af038b1b40bb6cc3ba7501cf11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189677 Malicious code in stratigraphy-stream-module-deneb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d977c2fcbc1ef3bde1d1344b871cea0952fe5c9401c83122d0b5e68a327e606f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187425 Malicious code in ignite-configstore-morgan-kastra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8906d0c8e8c3c3b8deed98d2a4f08dad36cbf617d92d432626f92cb068681443 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188271 Malicious code in nextjs-tachyon-apollo-cosmos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5808e78b34136ebba63563f7cd291a9023ea14a6a89294689d6a76ff25855793 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189119 Malicious code in refactor-file-sed-class-wind (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20c5eb868bd7654b174c4709e96039eb8842f7d6311d2899f566d23882c27941 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188977 Malicious code in pulsar-selenium-oortcloud-dorado (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b9c392f64679172f81a2fc6e79ccf979dfbf3879ed0696eb339f8e1a4219167 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...