MAL-2025-185548 Malicious code in arcturus-phenomic-glaciology-promise (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5041aedc9f556fa5042866507cc67da08df40c63bc2232ad8c83e43644f6f999 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188934 Malicious code in public-bundle-class-iota-thread (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03445ba8a939ca18bdd9df7c6eece70c41c352ef40c472e0eb55792092510cd0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189359 Malicious code in saturnology-blueshift-parcel-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc4ca50082877acc2537bcfeaf9b2c9c124596a3983a4d9613ab7b63760f005f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188995 Malicious code in quantum-computing-eslint-plugin-zephyr-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e88f3f76a14f5bc81391f34d6452a089594d0603cf85c69cdd178397bc3c36c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186365 Malicious code in cosmos-yonder-grunt-nashira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05ec61cd9ccaae23473fa62ba89bdc0cd77a1cf4c2ad714655057db11196e10b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186718 Malicious code in eleventy-delphinus-figures-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0224ac3cb23c603d157129375e0a9a49860917e8b20c5c455d7932530d367bc9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186295 Malicious code in convict-axios-cosmogenic-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 699479996c8d027d40da1208f7afdeaf9a940ada10a45ce700f370a485dd9203 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189271 Malicious code in rollup-plugin-html-webpack-plugin-cordelia-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2554973e6e1d34edad7b0276e63e4eb111a0a6bf2f4ddf64775f7090d414bc24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187948 Malicious code in materialize-stop-quasar-outercore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40c02f2b49861ae44e49dc7dbfbcee45f3efecf0ac13cc6817c5a72d030129eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189502 Malicious code in simulate-refactor-java-route-beta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe246c9a319e93da08c8f821deca2d3ec78470ea6b665003d0e4eb5820e6771b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188161 Malicious code in mysql-heka-version-saturnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2111a15423e5ec2213bc83b5a7ef30ec0580c5fba728b2b7a7a02b828883b69b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188952 Malicious code in publish-nova-helios-restart (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de8dd1b8b7d8d8cd82eb001ee8781283fc8c4cc24cd0e42f85a14b4f40911a47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187680 Malicious code in key-class-optimize-notify-fire (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d94bf43315a8c1c2893814e9659a334209b0e31030d5d9e792fbd92c4daf7c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186444 Malicious code in cygnus-whitedwarf-entanglement-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29c3922b513f6148a513b65fa39b18700bbde729a62035425c49d61aef5cdfb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189995 Malicious code in tree-psi-air-moon-air (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83074f704eb4e4519a481ac7f001147d60931915820fa8b068b512c76f180ed4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187222 Malicious code in greatfilter-nova-morgan-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70a41bbd5a3eb7b2cf34d987772360f300333ee568f6821c4565123bbb63346d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188542 Malicious code in palynology-semantic-release-pulsar-wormhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34206c99211389792c4d934032f76e4292094dac40215fc8bc1353575dcefef7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187301 Malicious code in heka-bootstrap-javascript-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79bcabd4095430daa841c61c56b16ee60347e93be2e7f9c25d47d2a34c398593 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185908 Malicious code in brane-mocha-elektra-farout (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a64e4699bbd0a9043d4f0a6fe6c81a12163af437814fa8d1de4cf1f028f65136 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189188 Malicious code in repository-reveal-md-multiverse-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de52f7052500891977e9b92278627f7cabde231989ddf59ee96489c8f19bf65a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...