MAL-2025-186544 Malicious code in deneb-biosignature-taphonomy-glaciology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 826d1c2ca5b616a8f35e0fd137fffc6f302955dd4f7b5785761a78ec8078fb4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187431 Malicious code in import-abstract-nu-private-decrypt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector affdadf84f419615ba133e23f6466b63aa776121a9fce6149e79486c5bebc230 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188663 Malicious code in phi-secure-deploy-air-finally (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbc13f51e75a048ac88b7a6957de8320f60bd9b1e5993580feb537cf2c5e7abb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187659 Malicious code in kappa-notify-web-encrypt-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4adabf06362cf23d6c3eee9d92b084952fd8949a52f6b30a787608914698c108 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wavefunction-crust-interstellarmedium-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04a6fbe9eb989b7506f8400b8bd89e2de56b6b7b55bbda804bf9120b204df0e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in visualize-validate-array-hot-analyze (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa5405559277835b28bc4c8bb6db51998aa22c4fd91d1ef31c819a28799cc347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185384 Malicious code in adonis-child-process-pegasus-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3209c8b1de00a411a153a4f8dbe6ad93c7dd53375702b75897914da7bd3baf36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187581 Malicious code in janus-remark-thuban-sails (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 570155d095d3eae650688dc844681804d9c1b15d9b0f5ab29768d385d842d4d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187436 Malicious code in import-log-monitor-rho-function (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e0aa8e668ba36d4d41ca2d43ee6c401b9c982a3750a080700e0fadd64b7ec5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187422 Malicious code in ichnology-ursa-petrology-cluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a6f4fcb17fd416bbfa643799f40a797e324953f86944507dce411cb5d4eaf44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189565 Malicious code in socket-decrypt-tau-big-compress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 849529486d9d0d589a18e25c834f7a59aeec5d0fbfd60317298188a31ea6ec62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186012 Malicious code in cassini-hawkingradiation-rocket-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5253824e08b7a2567634e293db52907f34094d4adacb6b4ba2c609be5a522aab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186417 Malicious code in css-loader-rehype-toml-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aea947ad56b347dfbca7085c787f5e8d56e43c3c86d54d8c56f6bb58e166be46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188234 Malicious code in neptune-webdriver-manager-vuetify-boson (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ffdfe1c67faa783eb8752ac15ac0a09ad0d5148686b1b4b60b2f6870e5e27a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186397 Malicious code in cryonics-neutronstar-webdriver-mocha-whitedwarf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a4b05c0c53a0d448df82872cee2b18e5bff3f2660a4e6b65d8944adf0e9fd96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189538 Malicious code in slidev-resonance-farout-baryon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa5d96a4541e7562f20a9b4fcd284e9207e6c3730ae698555ff68ddbeba4023e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190209 Malicious code in vulcan-semantic-release-pino-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c72d9e409094829214238543e07bf97ca0de11f012ae732f970551021eb40d66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189941 Malicious code in titan-luna-luna-prompts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98d1efe8a02e5a0cf5767bf942f74baa1ba82ff3d393560c1d4740ba7a5bc1b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190396 Malicious code in xml-oberon-axios-neuromorphic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d055296cad7864006fae38c855357f3989b269c0e15811c27891d9d0a2c49d60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186639 Malicious code in draco-gacrux-carpo-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e99af30e309e14cdab037f48e58b659c2e89b47c57ea0ca10d2d97b6c7f47586 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...