MAL-2025-186036 Malicious code in catch-bash-string-long-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b18aceb03e40b3bd501d752301e1b8db422f9568a508eb687cc8e7084d23656e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189182 Malicious code in report-new-runtime-sun-user (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f170b68394d1a1d0fbcaf0ab60fa7ed7b0e077c63d9823cf2922b7bca42d9aa3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187279 Malicious code in hapi-zenobia-ophiuchus-quantum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f17c724f011c6b531c58109861289727c9168f0ace0072d17a01cb4401e38726 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188361 Malicious code in npm-equinox-bootstrap-baryon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cce8e42fb255792dea3c004dee600372b6a26818d5701f1978618438d6cdad73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189402 Malicious code in sed-route-encrypt-refactor-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aed1135d1e30d5da6abef9427602d2d9b7c72558bdce98188e17f068674d637c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188248 Malicious code in neutronstar-bootstrap-nodejs-paleomagnetism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1485cd468c12725160c4f7c52c2420c78dc535b92bfbb49bcba56bb7a7952f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187319 Malicious code in helios-nightwatch-tethys-eridanus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89ab19a67d9571b4928642ad52ea4d92a1394cb76bd2b6e7484639bb37cf0aad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188216 Malicious code in neptune-europa-version-thermochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8bda02da4b17be35dae8af31f33e45190975dc5b800247dd179363537abfee5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186275 Malicious code in config-darkenergy-heliophysics-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b3f2a08be0835c663a99803c2a7fa6298b462438acf40f200e42fac09cc218c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189189 Malicious code in request-gemini-prettier-plugin-markdown-hercules (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41aba293435e865cd16c68eb54bf9bd32c3825988f2434b623b6794b0e0ff74a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187047 Malicious code in framework-rimraf-buffer-csrf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4fd7bd0d93981950b7dfc97b285205d98122fbf996356148515702794779a01a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187551 Malicious code in isostasy-loopback-docusaurus-inflation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 797720d1b8288c7e2626da0beb9bf3b04fce2db05038749d1edb8dae27d74f6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187040 Malicious code in foundation-node-config-farout-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3793dd3ff731c5c1110f0f04402bcb024a4a5017e8a91628e170d29b6403c4d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in exobiology-chalk-xml-atlas (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b4543d90e96ff41d6222d7d115878a78a7d20d09d3e42659a068f00c0442733 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in xml-oberon-axios-neuromorphic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d055296cad7864006fae38c855357f3989b269c0e15811c27891d9d0a2c49d60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bellatrix-local-puppeteer-epigenetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4a6d6dbfd6ed566627b43a2f32125740bc5874194d00ba5e1b805d7c17f74ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in repository-repository-nconf-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba2212e917a4c02184ad8313ff8d6188faf06000f6bce4fcf156762a51f7d7b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187140 Malicious code in gemini-ionosphere-superposition-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d9915da48474b9a7fc365caff832585a7c79e69a676a479e6add1449dbf3314 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189112 Malicious code in redshift-build-geodynamo-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8eb6dba5456ba6db7b6f8b463cbe02f3929d795d4d1027a1cbc0a88a12d75528 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in leda-epigenetics-redshift-geochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e0cb3e92026bed89ba1a7df8206dfb41da5cf939d0d3e4c83234ec51d085d83 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...