MAL-2025-186501 Malicious code in decode-info-new-finally-new (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3950f1595598eee2e1fc0c8562e4c8079ca413a304be306695f1846305db67de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186965 Malicious code in figures-elara-lithosphere-cosmicsilence (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07029bba3b26d9e09b205885af58f5c8cd453be6dd076dbbcb82b5bec7cd6991 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189575 Malicious code in socketio-canopus-palynology-jupiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70191f997c3cfac0e33d3c4234b349313c14a3109867266b4e8474d4b01bb00a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189044 Malicious code in quick-info-star-new-import (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff8d2af4a7471f80995ba4591bc1d021217434d34977fb94879b5ed115d965a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187720 Malicious code in lacerta-paleobotany-convict-babel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be94532d5d7ef97a39c714791cc31d17cd747e52793d5361d81af4e284e2b3f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188720 Malicious code in pipe-grid-byte-old-array (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 707c043a8df19e2deb325b85449d0ea39297d0bfab853cf484146aafbc444bd4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189719 Malicious code in subscription-asteroid-paleoanthropology-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 918073041e550b5c69ffe7cd13c869d13b870526af47b743e03a6b1ae9f81efd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185888 Malicious code in bootstrap-forever-uranology-colors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2670113820a8f2a2c46158eeea3fbec418026540f0e9939b1e4f110363f9c9c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189919 Malicious code in thread-daemon-try-omega-mock (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1e433f4a84e6efa7b11638b10854c927218008bde39976e0df1922164229fc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185535 Malicious code in archaeometry-europa-asthenosphere-run-script (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 261ee2052bb353eabb1fe0c480e76b4c843e7c52774ad71cb95ae7d1f1a41fa1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188577 Malicious code in passport-magnetosphere-sociobiology-ichnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d6a1b5f77b1e31f60a428ea2753d7840a8976284d049afb13d7ce18c39a933f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188336 Malicious code in nodemon-slides-frontend-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4161a9733ad0657a992b0e3b792993775b939fbc4452872a0be0abdc96d50eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185742 Malicious code in balance-char-byte-final-big (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 817e865ae1c8a984187cb4dbd722f2a15ab88822dc1ff846b8b0644a317fdc6b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185398 Malicious code in aether-tachyon-geochronology-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97c5712385fa129477281e98cbc714546f1b33bda214810ca0805130a57eb58d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187531 Malicious code in iota-aether-hawkingradiation-augmentedreality (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e0a7a9c4b6adbb29d416747efaefe914079d8722fce2307a0b32e37ccc5eb06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189725 Malicious code in subscription-playwright-public-carina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 701a8a346bf74a50513bb9a55b5b268f778f18a886f3f088e3fa641fb990991a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186467 Malicious code in dagda-ablation-ganymede-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a403cd335f4f51180f5005355c2b51c318cce6d0910807f0b962298e25ee8ac4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190050 Malicious code in umbriel-spica-rate-limiter-auriga (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f24a2c3e8a9bab387f482012d72bbd73ca8104bd9ac31e0303a0cd6bd10374ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190158 Malicious code in virgo-framework-dependencies-firebase (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0409c65db6f8bd311bf6cb439379b2c52dc1f8fc0a7ab975a69106943fe4e47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187437 Malicious code in import-omega-long-cloud-gamma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26ef12eb1f77e3a9297d64051d6f96214b0bc858f070a63bfce67924055b48f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...