MAL-2025-185533 Malicious code in archaeometry-command-iota-octans (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 625535a7d50c9abf08896ed43070f216622328e54c4b03808dc7f8cc5b6fcc9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190209 Malicious code in vulcan-semantic-release-pino-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c72d9e409094829214238543e07bf97ca0de11f012ae732f970551021eb40d66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189052 Malicious code in quito-rocket-radiant-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb1027d85e5f5fe77252e470808dec33a66a0131fb5706d9c2bdc7aef3e9a7b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185548 Malicious code in arcturus-phenomic-glaciology-promise (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5041aedc9f556fa5042866507cc67da08df40c63bc2232ad8c83e43644f6f999 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187705 Malicious code in kronos-ichnology-dotenv-safe-seismology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6c772d9ee172d9d8a4149b89bb7e9d6739711a4032f4fe5a817bbd35ea114c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189995 Malicious code in tree-psi-air-moon-air (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83074f704eb4e4519a481ac7f001147d60931915820fa8b068b512c76f180ed4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185865 Malicious code in blueshift-perturbation-centauri-paleoceanography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 841e48167a2e8941ea52d3d87bb92b2dec4bd11e24239da9550cc850ff6ac3d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187403 Malicious code in hydra-publish-filament-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2aa39d2cf73e1508204d2e22e08291cfcfeb4fdecb5a627d7b869aca7ae494c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186935 Malicious code in extremophile-slidev-radioastronomy-coronalmassejection (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector caabac9e0f1bd1f9c12cdd709f620e7c1e8d2e0b6ee9f0e3e16f1553227dcede This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189359 Malicious code in saturnology-blueshift-parcel-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc4ca50082877acc2537bcfeaf9b2c9c124596a3983a4d9613ab7b63760f005f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186273 Malicious code in config-cross-env-nova-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eec2e3c10bc0dfd078bb269217828be6878379754bbd7321847eb20ddb238aa4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186893 Malicious code in exec-virtualreality-wolf-paleoecology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb522e4144e64b1723fb48ee04de4216c3ae57a7bfecf7b921366d8b3bd5bc2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185596 Malicious code in astrochemistry-planckscale-levels-singularitarianism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d09eaada391f12d930144df90244194a3d73586bebf0dca02fb04568762e1e1e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in manu-oib-givakisaos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f27c9abaf7370951e22e04704cb225a797d8cd4c362229f0b6dc978c8ce5d07 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in manu-oifads-gsisofai01 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b427b11f1a5042a0f7f3706216c64c30212178ac1a06c84018a458fa65bd272b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lomi-fus-ugaiaf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28a9f6d70ab7b3e0c896ff6731a012f86a3fdf2f00ae94dbd5073c4d284b9097 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in manu-oyib-gisnuosgif (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf81aab2ff720e42a7d19b08e08a67933cc9801d782d116b07c2fc9cd2f71e8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in masolv-avilo-civbusasoifaufoiv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21489ac1734aea20a69c69d0ede7a6774b18cede006e7c2ad028c411e61d5b69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avangs-olims-nolu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 274d7755fba61fd245c22f0ac0d5de1e7970845ddf2304314c89c1ebb0bdbd71 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avangs-olium-noti (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fde0f92653f32a9665859f81366c641dabd589620cd3746f09ca6e43856dbf73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...