MAL-2025-190052 Malicious code in umbriel-zenobia-sedna-odin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68b10880c1028577aca2324bcb02cb17d6dcafcf9da7aade9173f0cd6991bed7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188968 Malicious code in pulsar-dotenv-safe-redis-fermiparadox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9c008e0e78c252ad80dc2cdf02ef146655bf01aa8cc20e278fc2892651e7ded This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187550 Malicious code in isostasy-ganymede-archaeogenetics-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e72a040292a691c04c12c28505f0378f69205785bee641e65a94f8f7df242d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188872 Malicious code in prompts-meissa-lacerta-deneb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c10fd22419fb3d6e178c081f9d5255950af4238612ae142fa4a8d8b98ccd3ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189448 Malicious code in sequelize-slidev-forever-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7d1f9d87e5296caf1b7c624845186eef2f3d3f442b9fd68d4216c088d7c779a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189891 Malicious code in test-theta-old-yaml-eta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3105bd46bc3bf37e1426594d233e6aaccf8654317b65946cf727eac0782e7db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185705 Malicious code in awk-minify-minify-proxy-omicron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1208fc2ae9856f039e6e138fcb07fbd979361c684b17686c6b35f22247a99bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185460 Malicious code in antares-apex-robotics-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05283e2ac79402a444e34dc483cb2ef0709b9639a2149ee025d60b9d9c920581 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190123 Malicious code in user-boolean-info-decode-try (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5255d33f074e4f791a5dccd9e6d57315c6fc8883da3342c9b4a0a9ca8c5fb24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189814 Malicious code in tau-data-grid-minify-function (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51fd667a40b0b62ada505565aab53c39d96f06b26be3e9b5ce274831637ecbcc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189183 Malicious code in report-serialize-rho-public-file (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62de5b36b23d92c1a388e80fe1d3dc55ee676535110f4175eb6a428aea0d3191 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189729 Malicious code in sudo-reject-mu-proxy-fork (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71bd21ebc82601b1500c1ec0b38beaf261822f483579359312b433a31d3a139a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189308 Malicious code in sadr-proxima-uninstall-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ae035b667df2da489c93555d27bdb3a7cfe04311fe176852f8da12f8278923c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185466 Malicious code in antares-iota-mysql-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6b745a215730f800ab23e41a575eb14af8482a22bb5b1a6db13350db681a93e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190363 Malicious code in xenobiology-electron-deneb-rimraf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95d8ef715a3d090ebad1f5c4179df9c012946cf224baf6da20e70544e333058f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vuepress-winston-deneb-vulcan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85b680b994c88a74132e41b6149654104412796e59caf936a14b48d70c5e97e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186390 Malicious code in crust-thuban-archaeogenetics-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1d77d5878eb84187eaac9705aa2e1f130b0c1a6d7d56c13ff36950c3de33028 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in omega-string-view-double-warn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da844f5894c542a0d1cf7cd454e4368a4f85e5c9fcf2b60c0a06e16e1a40fa0b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189235 Malicious code in rigel-helios-phoebe-fermion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24a0da6053cdb72f85fde927e0bdced3be241789ece6e8366cc94bc24e6a0aa1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190025 Malicious code in uglify-js-gravity-upgrade-aether (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7a40d3f6e3318ba9e54e62de53776b9b481eb965be138be7632328a3c7ffa76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...