MAL-2025-186186 Malicious code in cluster-sirius-promise-neutrino (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 246366ab6b3632e7b423af9e451968b2bf746434d27260f7b68ffa2a924009ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189538 Malicious code in slidev-resonance-farout-baryon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa5d96a4541e7562f20a9b4fcd284e9207e6c3730ae698555ff68ddbeba4023e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bunyan-carina-adonis-mysql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfd90301f6cfca4ba49757fabc76efdf61ea2544c98f1598ccec6338b083fcda This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188904 Malicious code in protractor-xenos-aurora-holography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1daf88a4cdb645adc2c90267d92d9769ac690de4b4cc3f0998b550fe6bf1ff1b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186372 Malicious code in cressida-yakutsk-zephyr-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dae255b919a558810665528345442d46e7043d63ffb0951981037e0bc8c961d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190067 Malicious code in unuk-hapi-cross-env-nashira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d337623dc4dce49e5bb465b6ab727eee58fb69714217f60caaed1fcd72d1c14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186719 Malicious code in emulate-await-sudo-code-grid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 754e83206c67625a2f588a8c5c27a9ffe36bc0e8ceea38941dc9bd3eab8690a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190201 Malicious code in vuetify-thermochronology-csv-cryovolcano (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 203350dac17303b45c43bb6a8b176ec28f297d373b7b00d634187149616e7c80 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185647 Malicious code in augmentedreality-version-wavefunction-spawn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2503586da8fb0802fa3367acc3e22e67b9d508d0ea7d14123f3ec4edda2e8203 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188629 Malicious code in perseus-odin-neptune-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3804f35db4608ce02bd81964c40f8470c16a58a2c8d957175bf051ee4826bd28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185968 Malicious code in cache-publish-decoherence-astroinformatics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f8c45af9f1f787eae1ffc6a38584c3e59ad89115ffe14aaaa705a8994e0708e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186632 Malicious code in double-file-encode-moon-virtualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f10f8c7b46a34fb8cd76f802a955287a6e735d17496a721553248f24725219d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190316 Malicious code in wezen-xerxes-vortex-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 946bf71ee36457170ee49ec45ec813f62e10c9a664b58f862c83f7a5a43465a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189813 Malicious code in tardigrade-virgo-hologram-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ed42039e0d9b78e3cd59ebd720e24df16a2da59377b7c2fa98dada31223e78c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189130 Malicious code in registry-readable-nucleosynthesis-jsonp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 312e23130468892f66ec008e2c37d568ce30ed98197cec6017648e4fe9825d86 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188469 Malicious code in orbit-typeorm-nucleosynthesis-tectonic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6dd0f8906ebfbf9c904bb008379e1ef26813caad53f6b2009b17913f630de464 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185806 Malicious code in big-tau-stack-root-compress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4589efda7676656b37dde7e69e0fe24d7b7685946d2b91de4fbbf0757782b255 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189214 Malicious code in rest-oortcloud-interstellarmedium-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f490d6f037ba5aba42fdaf960b0d8bbe6e55f94782153789b5b8d489e6eca4cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185798 Malicious code in betelgeuse-sadr-antd-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5533bbb97535e19e922a0da680df8685d27a569ab72e0b79de9398e24a13a406 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188324 Malicious code in nodejs-cosmicweb-chakra-ui-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93a5092226cfdaec9107ff680820108c965f38859cd60ac2915fa0552cf83dbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...