MAL-2025-186536 Malicious code in dendrochronology-biomimicry-supernova-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector caed6acc9b9859828265ca4931b9597b3ffd7f0a1466d26e6cc64ed395204b10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187881 Malicious code in luna-xanadu-aquarius-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbc41d7b808faaf60c42dff26f6f47331e3bd6a23a51389d3ae2a88c7c0f9c7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189595 Malicious code in spawn-exec-zenobia-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08d195fec77b588ee50726619249d1d77aacd06b4a03966370f3dee0c6edc02d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186535 Malicious code in delta-sun-psi-new-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 374cdc7d058badce2f6a42696c611854a14f6b677f5cc78ec1c95958aa1ee55b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187838 Malicious code in local-jasmine-gammarayburst-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7ca518ad3274ecd8b9b330927a7839396f389f138e82a934647325eb4e447a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189924 Malicious code in throw-async-object-public-integer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10aa1d7a7d6befddd3451e86b4c9d3ff5167678967dcb13fa5be0d980ffd643a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190487 Malicious code in zooarchaeology-install-aether-extremophile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49c22366e1d5300faf7e5c1fe07291be7060715baefed7aae9da5cc0a995bc55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189045 Malicious code in quick-orchestrate-resolve-cat-tau (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c130e7f99154df61e98fc63369bd577376f29013630b84141f7847d9170c09f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188726 Malicious code in pipe-simple-virtualize-void-stack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 926400f6a4cc531e4518e04fa52cd0abcc7786a74fdcfbe3009d4e7d91669f67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189685 Malicious code in stream-janus-soap-juno (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd0748be6aaa678054ffec1227c9412d1378a7a4ce501ac61fd6eab94006e013 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189028 Malicious code in quasar-backend-altair-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35756d40a25a4bdb4052a566e3b66b63592849244ddafa63fe0a0df31a150e39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189307 Malicious code in sadr-passport-mantle-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfbf90790b787c745d7ecc3df9a5bb266126009d229135095e2d81322087b872 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188652 Malicious code in phenomic-google-antares-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0fff97e545d5e2e9db5b557728fa65896b848a234061eb2b80fabc1f5a3203d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185931 Malicious code in build-perseus-repository-asteroid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27053231811897d728e75138a8e6197e848557505ca26f8741717e627d78716b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189682 Malicious code in stream-build-ganymede-corvus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24b83fb6af139dbb9bbd46a83057ddae76e5bac4e17b4d50dc4543a894b03951 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190300 Malicious code in weywot-less-meteor-jupiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8542102f9f4ae3b048464b926a5ab26eb49cd534e4e12a528ad808d7a291bd1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187257 Malicious code in gulp-yildun-lacerta-webpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76a274bdb3d2616b5e76f058c31ebcdd115b7a1c639d4bd9c4736f68f31c0c47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188200 Malicious code in nebula-delphinus-planckscale-juno (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41b5858e77cc2e90855108f123b97315d25fd03366fd3a2c7c3d5ae81ca595a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186497 Malicious code in debug-tau-wind-gamma-sun (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 582520f95fbf0e1692946045a6fba130b71d303856ba7dde1b89b2b426d30d57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186064 Malicious code in centaurus-neptune-css-loader-lynx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0908ef85e2b7fe9360387bd155ca3c553dcb970ba235726eda56533fd71a985 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...