MAL-2025-187737 Malicious code in leda-morgan-xanthus-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0d4d499bb8d7e5664a8ab87aeb749fa0cf175f430a694968d93583fb239b394 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188466 Malicious code in orbit-library-blueshift-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ebdf3d655aead94a3e9f83afb5c3ff14cb54c3f368930deb2544037a51e40c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189073 Malicious code in radiometric-stratigraphy-nodemon-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5346af81619e3b733e226889dc529f61eb53d60b06b5a2830ca2833afd457303 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188216 Malicious code in neptune-europa-version-thermochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8bda02da4b17be35dae8af31f33e45190975dc5b800247dd179363537abfee5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187438 Malicious code in import-proxy-cron-balance-abstract (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fc1ec58f88db65ef37f453763c2850aa34c61344a704725c6db3c7fc21bea4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189847 Malicious code in tectonophysics-levels-zenith-karma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b0d8bc646ca04517eb83b1a5197f35f38394551c86c54540d0ff4550414ef7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eris-umbra-dotenv-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dbf7714f75abefdecf0f36cce8d8391b67049c271697d541efac035b1b66ae5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186886 Malicious code in exec-dactyl-halley-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71d5efdab59b297ba7336cb8f8db4a67041c6a6b122bcb9ded3d7e05cf0aef25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187551 Malicious code in isostasy-loopback-docusaurus-inflation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 797720d1b8288c7e2626da0beb9bf3b04fce2db05038749d1edb8dae27d74f6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188229 Malicious code in neptune-sync-holography-xenobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d57b68e79022a7960c4c1549b9687a8d747ccc77b49e84f234d1288166c8ca72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186036 Malicious code in catch-bash-string-long-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b18aceb03e40b3bd501d752301e1b8db422f9568a508eb687cc8e7084d23656e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186330 Malicious code in cosmiconfig-gatsby-janus-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d569a94adf638e19a24f0f06a1a6a865fbf7a01e48a5109520fe71f210a2307f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186177 Malicious code in cluster-child-process-remark-hadron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0174842527c29694de08b676a8177ac52e03dab4a1db27c0edc59945ebbb6a8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189182 Malicious code in report-new-runtime-sun-user (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f170b68394d1a1d0fbcaf0ab60fa7ed7b0e077c63d9823cf2922b7bca42d9aa3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185836 Malicious code in biotechnology-apollo-rollup-plugin-nodemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0830b98c58ab354f9147b7c6003d2a35dd551ebee55353545da36da720098ba1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187040 Malicious code in foundation-node-config-farout-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3793dd3ff731c5c1110f0f04402bcb024a4a5017e8a91628e170d29b6403c4d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190431 Malicious code in yildun-blitz-miranda-accretion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9aa6adbd171001d6774e9c0faf6981e1b8230bc776079be2918fc0071a823fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189315 Malicious code in sagitta-jest-orbit-dotenv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97d53a4bd4227f567dec059a9f2b201e3dfe39d01c0295bb6b17cd914e8e4d7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187007 Malicious code in fomalhaut-restart-loglevel-forever (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2249aa4fd99b1a153ecd1845d37c0b92b17c3447a01493b2f5ef0609f04c1196 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187291 Malicious code in hawkingradiation-eslint-mantle-lyra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88a5de4831c38f6c1d0de9165d7959c9e431a8a052cf7743cf669170730ae39b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...