MAL-2025-190204 Malicious code in vulcan-astrobiology-wavefunction-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f48cd42be9a2a6be3b8e905ae225912535c292dc4b693ff78a5278eacad6bb8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187955 Malicious code in mdx-resonance-cryonics-geochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7acea75af333e29d6693c967fecafdc79642a14bdd49af2ec3e0b2428ba053fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187645 Malicious code in jwt-firebase-izar-gulp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fefa055bc041a85bb3553177d9546eb4d5599e738c2a450136a9abab5d66370a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187620 Malicious code in joviology-standard-iota-outercore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af8d63a4d4151f2d7abd0d0003f10cd383d8c15f82d151c121367037a69142a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187705 Malicious code in kronos-ichnology-dotenv-safe-seismology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6c772d9ee172d9d8a4149b89bb7e9d6739711a4032f4fe5a817bbd35ea114c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187700 Malicious code in koa-higgs-jasmine-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a94744e4363382314160fd2c7e5b498755be2a10ae9e8fa7b684813a28d90a46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189080 Malicious code in rate-limiter-aurora-helmet-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9633e2fd02710c31a807cef01e13aef312acd495a2495f49441b3006042bae81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186979 Malicious code in final-dog-throw-resolve-short (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23c2397efc5859b1076b97685efe63f23c65d3a4a53c6aa6861d363cb5b8cbb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187403 Malicious code in hydra-publish-filament-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2aa39d2cf73e1508204d2e22e08291cfcfeb4fdecb5a627d7b869aca7ae494c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189102 Malicious code in redgiant-heliophysics-protoplanetarydisk-prettier-stylelint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d2d787ac5197bb2ccd0791295222d1fa188d9eb72d6140865139d4dcf028fd2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186614 Malicious code in dotenv-ophiuchus-steganography-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9bbab8194156ba927fed79b2c7a39a4d66fb84cfaf6e8b439ffaac9638597dc8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189836 Malicious code in technocracy-protoplanetarydisk-xanthus-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 500dd7d62fdae022c87c95e3d1696430225ac3b8b2ce7eb189361de65a02fecb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189385 Malicious code in scripts-duplex-innercore-mongoose (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 795b605e61cc15d48e6db76692728e9b0cf00f022d125f102ddb7cde83246cb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189243 Malicious code in rimraf-isostasy-algol-paleoanthropology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3481301405182aeda1f115cbdd839ab65c80a8048007b504458f4df9b948c27f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185812 Malicious code in biogeochemistry-xenos-nashira-petrology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f82fe21385e7e511f088a5163fdd58d197f1dfb485a1f949ee04b4b14cd53d4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187862 Malicious code in long-zero-rain-daemon-refactor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 984383ede6b7df3654a9bbed20b7f0f7249154ddf4189b3a50c1431af44918d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189416 Malicious code in sedna-palynology-aquarius-lithosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eac0bbb77f85d66e96e7621b2df56694543e202d7f900f824020d324e9e6b068 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189052 Malicious code in quito-rocket-radiant-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb1027d85e5f5fe77252e470808dec33a66a0131fb5706d9c2bdc7aef3e9a7b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190339 Malicious code in winston-polaris-rollup-despina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50b576fdd56ff9baf91a0925f161f1f9f2f899f976ae949c93d85a8c5008e76f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187108 Malicious code in ganymede-pegasus-xenobiology-pino (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a16413ecf4bed9744cfb9c63068fd4fdcc1a93bd866036fd6806ce8fe319b38 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...