MAL-2025-187371 Malicious code in hot-thread-cold-fast-epsilon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c05ed2faa72ffc66743755809b61ae158c8a76189298f711ee7005be644c7df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186510 Malicious code in decrypt-sun-mock-rain-debug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2d06f22646305412a369e98d2bca79aa51a5c48223ec3e26e326ab67cb75d6b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188019 Malicious code in meteor-cosmochemistry-parsec-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f018f42ff841a03bfe473a2be5b8a5c9547a9ff5fd7162c174cc4bf249906c8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188719 Malicious code in pipe-got-filament-xenon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7b64a0c0583f810c7bf936719ae9719767e9f1dfbc35d94dfc570626eb634fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189188 Malicious code in repository-reveal-md-multiverse-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de52f7052500891977e9b92278627f7cabde231989ddf59ee96489c8f19bf65a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188549 Malicious code in panspermia-seismology-yildun-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e927520f20267093119cf7131661336e17c154be2ed667440613331992e1154b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186266 Malicious code in concurrently-fork-blazar-helios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46e2cfa382a69284deda13d32454b9f9e9e1ed3c213c197f1ee60c093e7277f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189243 Malicious code in rimraf-isostasy-algol-paleoanthropology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3481301405182aeda1f115cbdd839ab65c80a8048007b504458f4df9b948c27f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190155 Malicious code in virgo-async-astrobiology-nashira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e656b9f20e0942219d52184b8fc5ea29dce1db22e46b4ed79b479c6566d1bbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188210 Malicious code in neptune-acamar-exobiology-achernar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52eb98f646911d61e3014c13b6acf805320bc752bda68d07adc39cea18b128b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187403 Malicious code in hydra-publish-filament-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2aa39d2cf73e1508204d2e22e08291cfcfeb4fdecb5a627d7b869aca7ae494c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186979 Malicious code in final-dog-throw-resolve-short (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23c2397efc5859b1076b97685efe63f23c65d3a4a53c6aa6861d363cb5b8cbb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188458 Malicious code in optimize-theta-process-cluster-dog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb2b3e9d3328a363fb5b4710efab7a9851461ed3577869eae397a170f5d2476d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190191 Malicious code in vuepress-mineralogy-aldebaran-taphonomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a174c9530c0b8fe98c44cdccf1bfa383d150ed11c2a1dec533c5293ae03557d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190209 Malicious code in vulcan-semantic-release-pino-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c72d9e409094829214238543e07bf97ca0de11f012ae732f970551021eb40d66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in apex-gulp-npm-dione (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5294aad7730d18543319acfe8ea7de730b6de8160892ee5e56072e4c6a5f6a6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187512 Malicious code in interferometry-zephyr-procyon-wavefunction (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c90d3fdb8a6bb17b1d45c5df60e592b70ccb57cc45f6b28ca5ea04d9fd8e2e10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186556 Malicious code in dependencies-nova-meteor-mira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 501435bf55002173c8f7d5b4c21b3d56892072239bd53de9e1caee62f283e9cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190392 Malicious code in xi-minify-bundle-sigma-query (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0d9afe7d7141055c0838ad1a3d5294b15a110475b4a168a1ba8da29c0f3f468 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188995 Malicious code in quantum-computing-eslint-plugin-zephyr-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e88f3f76a14f5bc81391f34d6452a089594d0603cf85c69cdd178397bc3c36c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...