MAL-2025-188628 Malicious code in perseus-metalsmith-acamar-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7188804efb1901805ec1329e87278e46d48c716067d6fe2a6a8b09e54d6c2862 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189743 Malicious code in superagent-singularity-singularitarianism-vega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cbdaa1d54bbc61f1ea74857628bad1ed29b040508630d98c1a955535b5c8217 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185914 Malicious code in browserify-eslint-plugin-heka-mui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7172bc209bdbd48b581811a9de0e6df6701af3db1f57699b07b93bca57191fce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185780 Malicious code in beta-error-rho-authenticate-tree (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30cc2769230687e6e7eada5a89a33afaecb48c332be1d59dc5e4f2b0ba46f3f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188137 Malicious code in mui-cluster-antares-nucleosynthesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09a79c5eb88dbf060771545f41472a61811c8817947e70dc0fc5cc821841efb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186259 Malicious code in compile-gamma-wind-code-deserialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e79a53ced69059b98c4597e3127eda0bbbdafd6e162e8951361655dec32beece This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189953 Malicious code in tool-callisto-betelgeuse-axios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3014b72f48d0cdf678c671d8bba429cf7ad5630d66432049d24216676d7ba809 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186446 Malicious code in cypress-cosmiconfig-dotenv-safe-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fce32655c7728a7fa545451955f37976f28b6a389d3c9b3998f1c6a0a5ae7ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186962 Malicious code in figures-betelgeuse-ethology-magellan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 502ea4d5d596187fc863e0bd4b1f9a667de36b53b2af2edc798a666929b4924e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189720 Malicious code in subscription-carina-standard-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5455c58d2ffcda8ba397e17e3f37446b866f2f4c87d7c00a6e826723a7fbfa6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185603 Malicious code in astrometry-kaus-on-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 469c28639b258e0ec9481cddd807a104ea8e6e67e6450680bedad1a799ee103e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189167 Malicious code in release-it-nova-orbit-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 860ab3495ac1d9fef2ffac460dccd2454e48b85c3df2a2fa18a230ee9b876907 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186423 Malicious code in css-minimizer-webpack-plugin-phoebe-biogeochemistry-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7e88aea6bc6d5bdfac3ccf178293c7fd3391a33d7bd847a88e2bed3c2f2efc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186513 Malicious code in deimos-ceres-astro-isostasy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bc2c519d821e0ab1fee4f93357d29d7e5adc440d117d25390326ed450e25002 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186567 Malicious code in despina-kastra-forever-supervisor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3c8f509d760595decb8b8160722db2226da87c070b5e751910271123bd7fd94 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190012 Malicious code in try-signal-lambda-execute-kernel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff58345af7f94838fe702630b47bf18db37968f47a7626a391421cf46ad542f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189358 Malicious code in saturnology-astroinformatics-release-it-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b3567225aede0b7578ed93233235ca67fe147bf5c5093c18d0dac200a90c12a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186584 Malicious code in development-xerxes-dagda-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7042445332cc153f5065a7dece3340b416923ec1504216b77f9ecb81566a7d5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187430 Malicious code in ignite-rehype-xo-cypress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4a51f0740e1612c51322e453536c8292d2bc79861076bc5c2b152821856564f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187761 Malicious code in less-pavo-restart-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66a129e765e40e8dce28ab9e4ec2c9ad3d9c0771c06a7bc9dbd4186cb47a879e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...