MAL-2025-186925 Malicious code in export-zero-orchestrate-zero-compile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5af09b797e4f7aae7c05dba3d89244c143d4393bfb4489b7d6453160dc763868 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185804 Malicious code in big-star-kappa-alert-report (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 277bfd448c229fdf8fe8efaef8c464ce08c287881a335bccea1a5f1dfa93ac74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186313 Malicious code in coronalmassejection-holography-dorado-command (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5eda225e7909dd8c03021f5bc15c82e2f1af5e4e548fc4dee4dd4cb0f94fad75 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189360 Malicious code in saturnology-darkenergy-sadr-paleobotany (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab539e896af1b7f48ea627c96b9ffd7a622b3e04fd2e1e71d82e26080d7deadb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188662 Malicious code in phi-private-async-earth-xi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b930c14e745c4ce4165a894796d9879c130ecb462db863194881e2488a88548 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189909 Malicious code in thermochronology-gravity-commitlint-element-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75579a959d026eb2c03145dce2aba38b593b3073d09b2b1efbd3643c2b07e8e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186486 Malicious code in darkmatter-exosphere-exoplanetology-yakutsk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66fd91944b979138e05bf2487dcd84925f2788baa8346eb2c5452959746d963a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189122 Malicious code in refactor-signal-float-code-char (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63bd76bf641eda520b1b2a0dbe0a1b53f6b4fc54d58d3d0fd0530f99af1f492b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189295 Malicious code in run-script-zenith-mantle-blaze (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c8bc15d6d61c2cf729f00787cca8ae37164f36691b012e1c17ec1cfa919423f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189142 Malicious code in rehype-darkenergy-neptune-taphonomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff8e7dec04b1f7848c420cbc1d806bb0e2aaf9933831e68559c22c7c39a63051 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189674 Malicious code in stratigraphy-archaeogenetics-pino-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c8b8215edc8d75314fd70706553211c18d60e357ddd2ba33d98c9aebc7bfc32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187486 Malicious code in innercore-yildun-blaze-robotics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c6a67c1532daa0289287aa51f609d0b21a44bca1e258d173afd670f7b9aede7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187612 Malicious code in jovian-nodemon-winston-andromeda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb4ce02b99156b543aa9881f2f45c3688c27669e2a3d782b1528ca46d04e33f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in index-short-java-phi-virtualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40e263ba680a09fbfa7fa23f8bee80092a3b81959c15f1cd633d5a32f174fd41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in enceladus-got-ultra-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 32239f7dbc5399708cd1356919a8314d11782fff280d08afb68b2a936bd12671 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in non-blocking-luna-axios-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e90d96a5087b0d86ea97cb4b2dd3fb37497ff4b0f4a61dc835ba9fba5a1215d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in standard-frontend-glaciology-selenology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ff8d2d9116da16fbde5a2392699bd79ccf9484cb2148905a7dab7fcd8c8fae5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cryonics-publish-dactyl-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8e8225eeaac0b8916a2b89b7dcf39e7988138e6e430c4f6a4730306f251bdfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in parcel-panspermia-commitlint-config-angular-tectonophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad7ce5ec778c0d8a09caa214fc9ed62c9222306281fcc29ee88e7c4f779e7806 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in regulus-eridanus-meissa-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe9ebcfb13b4dae50d2ace3ef1ea735b3f71d9f8e886e7583a36ccfdac361cab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...