MAL-2025-185961 Malicious code in cache-cat-index-async-small (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7e9349b68caace5888139d6b847199008fcdcf3f6ecac1191d7bf29cd1b8790 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189179 Malicious code in report-easy-fast-star-grep (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08e344a2c581a34f772f67b04c94121c2f5eac9b9db0669af25db99e4c58e086 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187954 Malicious code in mdx-kaus-browserify-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c35c481bdc9c3cd04791a4bd2aea3c97faf1ab41752bdeaa06954b53da493801 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186267 Malicious code in concurrently-grus-vuepress-zenith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7074c66c67ba8954226ffe4caea4be815b7cbdb15439e2f2e1a589d8eab0e173 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187513 Malicious code in interpret-deploy-omega-async-fire (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9548d951625cc682aa2b671f44bdb5b9bc083e3b6c50b33272d8daac848d51a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186645 Malicious code in duplex-eslint-plugin-apex-taphonomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2235332a5fb41e922702c24cc78cadd2f0764b74cdef1022c5fb1baebeda86a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190115 Malicious code in ursa-protoplanetarydisk-electron-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43730eff79ee89795068b5ee0c4f33390ceada895b6ece6e610d5bb830bc250f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188713 Malicious code in pipe-astrophysics-astroinformatics-callisto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6c1a63f8bc23f63c7f34c6526b949675e4cff34dd203b22a467e3952555220b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190116 Malicious code in ursa-readable-astrophysics-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc80f1b9c5c521714bd2e80e2a6b16e345cc954db76ce53bf0af5041f30f670b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189664 Malicious code in static-view-warn-cluster-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8959878fc66db7bfa787bb8fb77224a14a0c6f77599a8ba842e95e295d4466b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189018 Malicious code in quark-dotenv-safe-run-script-planckscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4a6e17931e4aaa6fd168c9dd241a0af9cc5a149837770053fa39c03d71da231 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188851 Malicious code in procyon-yaml-figures-toml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f7740a3ced9536b2d669360d3d0007870b01aeebbcd11690bd66779cdad44da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188062 Malicious code in mira-pipe-stratigraphy-semantic-release (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a737e899eebfc93719ad05ec9c57d48a39e9ff003452bde12f51658c501679d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189076 Malicious code in rain-interface-java-bundle-wind (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 861caba75a2a254135ada995aca02170f3baf8a663c283e579f73bb112d4f59d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189673 Malicious code in stop-prompts-fusion-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a369d5bd92a84f0b2a7db8c2040c883f375e842eb37e42b4aeac8b102ff0f006 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186925 Malicious code in export-zero-orchestrate-zero-compile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5af09b797e4f7aae7c05dba3d89244c143d4393bfb4489b7d6453160dc763868 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189099 Malicious code in redgiant-callisto-altair-npm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c52623704e8e59183b20b689afbfb07d866c14348d1b2354d955944d41d54d68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187585 Malicious code in janus-sedimentology-higgs-biohacking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d85c22284b92d13adc9467f232e0857fa609fb731d979a63d2b9deeb917c846c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186700 Malicious code in electron-builder-lint-typeorm-bulma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7e5beb67118d8fdaa1e144cb2556d1c7eb507b684f06c0a99770132a862715b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188528 Malicious code in paleomagnetism-nightmare-radiant-hologram (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40ebc12787559b7d7eef63fc5cd7c191164484a02a9e5d88f09f05d350422018 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...