MAL-2025-189112 Malicious code in redshift-build-geodynamo-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8eb6dba5456ba6db7b6f8b463cbe02f3929d795d4d1027a1cbc0a88a12d75528 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189912 Malicious code in thermochronology-plutology-magnetar-nightwatch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4bc6d85290e6d099d7cb108ae13c434345ea45657af655f1a381cc6676289f4b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187388 Malicious code in hugo-unuk-leda-altair (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 985868da95638b1ea3c6c5b706eebe02eb66931a258774e2bb9ef2a8e2dfc480 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189409 Malicious code in sedimentology-spinner-gravity-blueshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f50f10b70db6417836bed5412cbfe199599d79c6e933af550fce08433b3db836 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188191 Malicious code in nconf-markdownlint-archaeometry-superagent (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7418c7fdd6f5f9cba20dad9a16c7dead00aec76421e9064d3859578321532d3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185954 Malicious code in byte-assert-finally-hot-sanitize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 182a5304e0975eab148e7260e5e3682cc7bfe2d1b2dfda22515c7d7e3b6e02b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188903 Malicious code in protractor-wezen-repository-quantum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed5572cbba6910aff31d33872e7ebb22412069d2c898fa10089c3aa097cce407 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187296 Malicious code in hawkingradiation-ora-celeste-toml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16583bc4d19d123f6a7f3df0faf7b443656d981c65e219ef3ab7b8d15897c9e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189482 Malicious code in short-public-permission-grid-throw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99cebd8516a3b996a17b13a2a6d99d754157b97ff1c4d86de13c01ebfafb4356 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190450 Malicious code in zenobia-google-readable-paleobotany (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 858f7b4211ddae783c9dca4669d04a3d883faa28e83cbba2ae5494bcb0977e12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186686 Malicious code in eigenstate-electron-lithosphere-dagda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4419ee7a3321834a9fe9daaccbc01f465940828b5b1ffbf986135d57c87ec87f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190266 Malicious code in webdriver-manager-stratosphere-stratigraphy-stop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0934643185b5cbcc16307cc870692bbaf0a0c6ef0085d73916acdc478aa082fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190073 Malicious code in update-astroinformatics-technosignature-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07872498943c814fce0f1daf16b83559840c78b50781df97768c53a52faa9bac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187661 Malicious code in kappa-pi-nu-beta-lambda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a6c3f70765ab517b21664813a98844d67f2c4e9b170198fb4e5114b66fb9283 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187633 Malicious code in juno-eleventy-prettier-stylelint-rimraf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6a310c6f44311b90b0c366863dc1251a35c2ec6b74bb4561c289bc7facabed6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187792 Malicious code in link-leda-odin-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e75ce4b4c89004a0671609cc9894c898727457ffbd1c7baf91492dcab7c4d92d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185675 Malicious code in authorize-interface-good-xi-sanitize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d85a36709ba2fdf12ccdbbb3a62be3d509127dd2bf12f9547d0c46a7016f02d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nconf-markdownlint-archaeometry-superagent (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7418c7fdd6f5f9cba20dad9a16c7dead00aec76421e9064d3859578321532d3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lyra-warp-dactyl-interferometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0443e66fbe5e2851fc2339642f366487cc1173568243d8b77eee088e5e787a0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in analyze-char-fork-theta-kernel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f903f79e67bcfa45a3643c772a60e0e3f7b066020bdb4dbc19eb67e84ea43304 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...