MAL-2025-186943 Malicious code in farout-resolvers-photon-blazar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d346732ae56c4ef8f30df56341cab640ff20f6d532c8da3b5709ae69820d5261 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189666 Malicious code in steganography-hadron-stratosphere-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7507c5194be430ac6904f8bef6c62434caa3f72c17684e430f7a5271af20b0a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189575 Malicious code in socketio-canopus-palynology-jupiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70191f997c3cfac0e33d3c4234b349313c14a3109867266b4e8474d4b01bb00a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189562 Malicious code in sociobiology-castor-package-prompts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e07b2b3e48f63280e2b3b47fe00bdbd1401a9b8ab4b8ce7f4487d3c8669bf24d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186165 Malicious code in cli-hermes-mesosphere-corvus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 046bc8f401b8fde8793714a2be47b15ddd79ce0545360eba45d7634fd4958c45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188817 Malicious code in primatology-impulse-decoherence-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58284e42bf4777ae90b372bb825073354f20b88b702efc139f25470f6e037fc0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188459 Malicious code in optimize-uglify-cluster-string-refactor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9357c297db533d262818f4d94e063b4ca7a1de545294cd6a542cd3cfd595d937 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185832 Malicious code in biosignature-quasar-galaxy-charon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac1d3e51cfe9d88284e990aec4a610bd3c00b943e7ec9570df3666a0484caed3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189601 Malicious code in spawn-venus-hydra-cordelia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a66e971fd14bdefb13ffa29893acb4ce63a7232109a3f4246fc26be70ddc6ca6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188715 Malicious code in pipe-byte-spy-fork-notify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fd87d19caaf820636be34fefdcc3bd3a61cd09787dfd04607c34c5c26a7c25c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189789 Malicious code in table-alert-water-socket-visualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4c0ea4e413f419c5e0a144dd2885dfbd7e42b8f622b38b4b1fb1a327e85a2f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186711 Malicious code in elektra-yakutsk-cosmicray-phoenix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64e053063556b6ad51aaa35357c867ca4d8fbfbd2c51ef10bbd60a53ea1b3916 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187364 Malicious code in holography-antares-enif-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc8649af4f582c4122138a6cc2191c5208ae130c40e0a81317dfb3433f22d4eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187461 Malicious code in indus-triton-polaris-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce16fae40cad6ac6618e19cfa3d4f555f05adf35508e0718734b0f1a138f2efe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188574 Malicious code in passport-coronalmassejection-vulcan-loop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50b0eacc9625153c6f8ea0ce91170fe0a92cca5c46d7b2b5a14cded70fe59094 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188776 Malicious code in postcss-gammarayburst-whitedwarf-archaeoastronomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b56c9b24eb32595375691f99f8c8ddc7daae29986e1c42dd18f09dcebcd5a33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190282 Malicious code in webdriverio-rate-limiter-wormhole-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 546a55ebdbc1b18fed5bbad6be8b757cfe2c4fa0d1f046a9d5deff7b296f6332 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188126 Malicious code in morgan-planckscale-rollup-plugin-void (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4038564189cfc4df64c4d821d73f7186c042f00c151dcc46dd3e83c3e152b8cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185420 Malicious code in aldebaran-quantum-babel-steganography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e432f722c7db5ff51f734dd2a1307f770c81673653a4f35fc65218ea770c1f77 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187116 Malicious code in ganymede-warp-astrochemistry-jabbah (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 647b20049a1713f442e3534e7043dc9015c74523dcd965708c39cdd9ec112639 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...