MAL-2025-186571 Malicious code in despina-winston-query-higgs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 362b8b18f444cbd8cc2912c6a22a8f1e5f7ee815915e3b8ba8919a2bf176e561 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187362 Malicious code in hologram-jekyll-radiometric-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34423c93c7a5b13e9f1e0d5bd862054c215574cb60b2d0c3c0fc097a038bc7d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190253 Malicious code in web-compile-deploy-load-secure (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be0b89eb11df0d45c9af94679854dc0e9edd6be08c36b6b9efed4a24abaf2a96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188157 Malicious code in mutation-telesto-cybernetics-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e93feef1dbf14cc4a7a5a3b3d8135960ead9bd867f10c2706c5411df97417a3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186393 Malicious code in cryonics-cypress-stream-lithosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e533649bc4d4bab67fc1c2e430b01f993e7a362899875e82326aecb1f8770f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189234 Malicious code in rho-water-load-info-mu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e14f7985d79c2471901d930216ad13686fed9538a20e6f305ed6922c2116b68a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187311 Malicious code in heliophysics-aurora-lint-staged-global (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3146d8b6e52b168ae00047b32f06d4bcb6748de549b64b41b2bfb73c6bd4abd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186318 Malicious code in cors-relay-mini-css-extract-plugin-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45b5d4138a7e858f7a94edc8c60c8746ad366a44ba1f9fafa3a7461ac2cca612 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188681 Malicious code in phoenix-apollo-nextjs-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0fae748e0f487ac104e869992e792c26ef9f016308883c633af2c0eb474d1f78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187765 Malicious code in levels-convict-json-dynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6438dc827ab933a352eebaba9c7906df80e3c4db8cca52f437cbe79dd92c0688 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189567 Malicious code in socket-easy-balance-virtualize-simple (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f81d7224dd9cff3d91e76d5be9e28254ebc4cb9d6646e3dd793d3b04ca87e64f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188579 Malicious code in passport-pino-library-schema (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7dfd1dca0c0311db7a37091bd349a0f55ebe17608d41fa2a8f2117a71407312 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188739 Malicious code in planetology-stratosphere-library-csrf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eadd62ef40f3b877824eeb1b48d4aef2ca574fcb0f1eb2abe17dc8802ac3c894 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188253 Malicious code in neutronstar-quark-dotenv-safe-koa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c51ac63c08154afa26f71278cae2c6f17bf39e6835d2f205cc35e304e1bf2f31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188158 Malicious code in mysql-cassini-unuk-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9073f9335c1be4ff425490df7e7f081f828afa71bed9769dd505b3c85f82688d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187525 Malicious code in io-quark-babel-centaurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d4b40a9ef6ba2338b307f6019ef8cff798ca04f067fafe984721e61b3924902 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187040 Malicious code in foundation-node-config-farout-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3793dd3ff731c5c1110f0f04402bcb024a4a5017e8a91628e170d29b6403c4d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187620 Malicious code in joviology-standard-iota-outercore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af8d63a4d4151f2d7abd0d0003f10cd383d8c15f82d151c121367037a69142a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189058 Malicious code in radiant-on-oscillation-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17ca9d06180b7ce0f8167aa6796479c6ce559c18461c3ecc78a266ab88af199d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187770 Malicious code in levels-paleoecology-blackhole-abiogenesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbfa25e7c0ebb5bec1894df67b378e78bfce051ef245093997e8f3dcabbd246a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...