MAL-2025-187233 Malicious code in gridsome-andromeda-algol-exoplanetology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4209a265669d9b33b21d2059ee649d6f3cc53672c2263b58601de9f129e8b7cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185633 Malicious code in async-yonder-hadron-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 775c77c14b2284f212027404562df746812937dd230c0e6f51634f32df0c533d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189069 Malicious code in radiometric-csrf-odin-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07e8818bb3c935c8b7d48fef4e1c34d7c3551bae906e325a0308948fdd96d343 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187792 Malicious code in link-leda-odin-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e75ce4b4c89004a0671609cc9894c898727457ffbd1c7baf91492dcab7c4d92d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187541 Malicious code in iota-levels-foundation-solis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00c2b0af1eef0fba29bf292945385ea48af585baa02b34ea53e9ae76e24eca73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185868 Malicious code in blueshift-toml-bellatrix-blueshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba781ce6e21bc8fd259330532a0851175ac241caef9ae72c818ba96369dc9688 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186552 Malicious code in deneb-terser-webpack-plugin-lightyear-enceladus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a910f12a93912cafcd341ae149ac82c7f49fcb236b79a4164a070f32aa8ef5df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189582 Malicious code in solarnebula-await-superposition-aquarius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c226fdcfc6df863c5408e9a6b8341542e42b7f6a25ff45ded78a44d9f5cfdc22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185743 Malicious code in balance-decompress-authorize-query-thread (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f691b177a7551590bfe3c1e03b03241709e2f45c80c249a71c374bd7a81cb2d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186028 Malicious code in cat-big-code-star-encrypt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3f3f6f9d454212a45cd8e581e11bfd884a5fcbb6280ff321fad59393e2c987a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186186 Malicious code in cluster-sirius-promise-neutrino (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 246366ab6b3632e7b423af9e451968b2bf746434d27260f7b68ffa2a924009ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190396 Malicious code in xml-oberon-axios-neuromorphic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d055296cad7864006fae38c855357f3989b269c0e15811c27891d9d0a2c49d60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189021 Malicious code in quark-iota-paleoclimatology-enif (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9422f0c6552ae0207d6ba6344207d2fc27ffec34d9f8279ac7fb1407f5431839 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188633 Malicious code in perseus-subscription-quito-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5366b5b7b684a3e273fd85e0ab2aaaf8b1272bc3ab21fb5c112c75452dccd5a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187349 Malicious code in hermes-websockets-arcturus-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a36606ac1ad475e7549406f6d7bf78dea41167443315514434ec7399172a4d26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189407 Malicious code in sed-sigma-mock-finally-virtualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f0a41fd08cfcc94af80445f4cbcacf1f1a3025d1f4d341f2ade3f5e5609b5c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185780 Malicious code in beta-error-rho-authenticate-tree (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30cc2769230687e6e7eada5a89a33afaecb48c332be1d59dc5e4f2b0ba46f3f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186202 Malicious code in cold-phi-cloud-cluster-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f0e9984087d6fc6265ee22bf94590da86323c7d97b5205d237579d0a5556bf1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189811 Malicious code in tardigrade-mini-css-extract-plugin-nightwatch-blueshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eccd2dbe37050ec44770db072262af063d90c8cbb1f901cc4ab7337d91745c94 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189731 Malicious code in sun-bad-assert-secure-protected (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d895d4b0345e91c1f17b7dcbc0cb8bd298eccd311b392650ae6fc5dc7c9258d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...