MAL-2025-190366 Malicious code in xenobiology-materialize-epimetheus-atlas (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91bff12111e26834b786d9cace08b98ae630c9ff4cad6ee080efa7afb0328019 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188674 Malicious code in phoebe-petrology-sirius-fermiparadox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f897ff38dbb81fa575193bde8868cfa42159ce1bb70838cfe850d7c349b77de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in jsonp-lacerta-eris-octans (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4338b9067de467c48ebcb22a68da6ba8445e72cde9039197e552af0dcfce6e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186984 Malicious code in finally-notify-table-orchestrate-sigma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3d4ecfd3ec9e536b6f5c276f6a533ced1d24590a4a00d5d059c241e6c2fd05e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187774 Malicious code in library-bellatrix-cli-cors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc1df04aae6a025d35e24d1c99352e79b2f30d9b4b6ff361adaaeeaa36618854 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189314 Malicious code in sagitta-javascript-process-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 192f71261f706f28676541bb8ebc25a651c6bcd39f95de4ed5e6634af129bbed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187927 Malicious code in markdown-multiverse-vuepress-geoarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc4389cbd599d8b51ef8b9f455d0dff2181aa051854625dd0c231e3d4c364cb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190185 Malicious code in vortex-auth0-string-holography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4b12f620e4fb06f261bdd80d409124bb22468e54001e0012b822d68da3e2741 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186487 Malicious code in darkmatter-gravitationalwave-less-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60169f4539ca2dfd27fe10bf32020236f1d4b0106bec0644fa577812e0362eca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189923 Malicious code in throw-analyze-cat-finally-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e41425f8df19c5975972c368e0ede064882c1221ada3df40871b15f703b3667 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189584 Malicious code in solarnebula-browserify-lightyear-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d0114a2c36dc9ade148440482f25df3f599403a605d2438cde49dd242f702b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189694 Malicious code in string-crust-exoplanet-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 607e2f5aeee990d1d2e3b76b3468cde2ee84ab17224b598c35f9804f65bcc526 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186517 Malicious code in deimos-koa-build-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a36c41fcb310eff78aafc5e8df244c1040a53162533a3e6f7026cd926873e7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186128 Malicious code in chariklo-library-public-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa536a5e403d931475f9787e1461256bb925caed3c743de48b475db4b9bb1938 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189962 Malicious code in transform-carpo-charon-hapi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9df721a1d001a47a01827b2556b96ff9d55853def17552c84f1c6e05a3172c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189971 Malicious code in transhumanism-auriga-markdownlint-canopus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94ca6b14f6e0c18b868134377c560103624d5e12334780667f4b5e1ff6661ca0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189129 Malicious code in registry-quark-barnard-cross-env (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8be35985da5091690aa56f84416af345aa641a6b98c78446a0a03f371a4176d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189927 Malicious code in throw-long-stub-thread-small (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20d1911fd1bc8fcee8202007abcb6410966a735e297b3dd98ab21559a2490b02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185727 Malicious code in backend-exec-husky-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 776fbd4098371f588d6cdfc712e363d560bdca553c92067e6828598d2381a7ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189167 Malicious code in release-it-nova-orbit-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 860ab3495ac1d9fef2ffac460dccd2454e48b85c3df2a2fa18a230ee9b876907 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...