MAL-2025-189042 Malicious code in query-sed-hash-mu-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5e5ff46385a6c398888d0e98adb6298c90d848a3297da7da247fba314dd47ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188229 Malicious code in neptune-sync-holography-xenobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d57b68e79022a7960c4c1549b9687a8d747ccc77b49e84f234d1288166c8ca72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188617 Malicious code in perseus-astrobiology-xo-postgres (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 209bc773fd8267be72905b2255aec7ca34c777cb43cffc9a378f21758053dd22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187268 Malicious code in halley-paleoceanography-mui-callisto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e1c18c06b50e272a459781ff344e0e72fb6cca19422c4940dd8a9f7d835cb9e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189340 Malicious code in sandbox-kernel-web-good-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30a8cbaba2cc17bb7d2f755e8e246f74bf867556708a1559e09e18f4dfad5130 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185534 Malicious code in archaeometry-cordelia-capella-dotenv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a2c8d6a31e349fd295ea6069c1f1bc56f8eba23734d8405f248f309f202a2e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188793 Malicious code in postgres-soap-apex-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b86a98a2d226d8686f0c0bfd665e59b9bb161862d45d5139f58b48ca662cedd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188515 Malicious code in paleoclimatology-outercore-neptune-nightmare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 766f9a07f9004f3a4cac014c091cbcd21e7fcbdbfe41f71c44aaea583bdbcc41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186908 Malicious code in exoplanet-xerxes-interstellarmedium-octans (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56f6b83f3bf5aa13c5c240a68822042cd334b7ab9ca7607f5c0562f4b8966fa8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188480 Malicious code in orogeny-quark-archaeoastronomy-auth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a619128ad4e67084b8c556c8d7546ed17745aee4912e9d3a87534852b863743 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189579 Malicious code in socketio-polaris-restart-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e80f723fb0c38fbfaf0efdc1c70d08acd508343dbd594e403fca9751fb9b1719 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190148 Malicious code in view-fire-data-simple-uglify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 457e1c0ae45b135280fa0b425dd5715c4b732ec3230dd089a53583e0e1726641 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188966 Malicious code in pulsar-apollo-decoherence-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abf551a8a06ecd6a92721cdb0801dcf865ffc04b38a01e16d0c850dbdb17c9a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188213 Malicious code in neptune-betelgeuse-halley-chromedriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0d3a2b6835a2e2cd78eb315d5e4b82e68d0bcb3840274c62bda761b9496ffe3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188188 Malicious code in nconf-aurora-ionosphere-callisto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90d618fe2bbc27849bdb3b7ab0735de3ede48bd7a4f02e7614ea1745ea65ea02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188048 Malicious code in mini-css-extract-plugin-nova-titan-duplex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ea7a868756de9bcc6a3ace304f91da8cc120146b8b0589d6581391a679daf16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190406 Malicious code in xo-indus-procyon-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 127166ed7ac52806beb38f75aa00eb00ab30d661f9b3ff074fdf4d093831f339 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187703 Malicious code in koa-version-scorpius-ceres (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75dacef98ce0fa1a5b9c797aef9cabfffb1071bd052305809bade9065f2f7e2f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185411 Malicious code in airbnb-test-betelgeuse-gridsome (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34f8c54d1cf82e48e21e0919c55c28945ae75a22c803ff46452fbae803bdfe1b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188023 Malicious code in meteor-fermiparadox-pino-mysql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4475a2700a3887c2ee6f081004405d01e2a1578c2ef22298f54d0b30c7a1993 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...