MAL-2025-189742 Malicious code in superagent-quasar-exoplanetology-areology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d853869d6ef8c38411ec721393742c67d73caadbb634ea41152b4f4b9f1c4cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186468 Malicious code in dagda-event-despina-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c4af1dba9edd14b6b9639544b279b4ddc5e819a325e046b9aeb564916b7e249 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189717 Malicious code in sublimation-private-technosignature-futurology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b58f2f9903b4478824461b4968c1561d1e34226aa387f3206db9b75f9b05569f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190073 Malicious code in update-astroinformatics-technosignature-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07872498943c814fce0f1daf16b83559840c78b50781df97768c53a52faa9bac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187529 Malicious code in ionosphere-triton-selenium-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d954d776ae4202f524932128d3db461e6808e8922852e0d2ae522b55c38c3597 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190401 Malicious code in xml-sigma-meta-daemon-delta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9814f634f331ea15ee456dadfc2e7f1468d32fd0e4eb9ef64568b3b1466cec6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188077 Malicious code in miranda-lithosphere-xo-alphard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f1eac87038018d949f144f833ce309a39c90f8dff7dca3d342001cc46bd9217 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189662 Malicious code in static-stub-dog-epsilon-final (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8517a46e26020ed95dd1167843ddbca884ce7dd5332da1c398e0078d7e5edc95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189423 Malicious code in seismology-enceladus-comet-singularity (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0edc944e35e75d3cc120f551d1580a20f478145a53e2e6ca603a6964f447ec6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187435 Malicious code in import-float-omega-user-eta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68b9d72ef4a5adf2927a1577844ade2d0903be998fe38061cbfa62e1633027df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188125 Malicious code in morgan-meteor-loop-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70f8ff4fac46120d5c038ff72708bfc1e04ff3b4a1d0997b5a208cd5adfdcf26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188495 Malicious code in package-uninstall-scorpius-react-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a74311a498dc54021eb8645f2068701b117d54e9b84519e6d9a51fc46143595 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187614 Malicious code in jovian-sass-loader-native-cassini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 225deea9531693f6cbd7d6edd3656452b2959b26fd0b8a748ec2e08d0dbcbb98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186893 Malicious code in exec-virtualreality-wolf-paleoecology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb522e4144e64b1723fb48ee04de4216c3ae57a7bfecf7b921366d8b3bd5bc2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186975 Malicious code in file-decompress-gamma-wind-object (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c18eb3d3f0daa811ce492b9531635f4cef64f89da0a246e6005ed0a1dca836ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189905 Malicious code in tethys-geodynamo-mongoose-venus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 384f86bbea9a17c8c4c1cab9ac42af48a2f7da03267231823fb3b4ce4c94df69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188083 Malicious code in miranda-postcss-blitz-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea79ab04fc3a6ac4cbf5514fff31c3ed5fba441933ff5d9a861ea695d6fed4eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188767 Malicious code in polaris-publish-vortex-jekyll (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebce85812e6fc46ef9fcc86a5c7993e6c77bffb1288c327defb1b194eb04254c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186240 Malicious code in commitizen-eclipse-sadr-chariklo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 003be40b652756a8eba0205c1a4a61f63cfc4136def4cf7aa389bed75aa2f8fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189472 Malicious code in shell-process-eta-star-omicron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 22452f12649538003c7b3f323d58496d4832fd6041b5b40d946747191db26d06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...