MAL-2025-186477 Malicious code in dagda-tectonophysics-materialize-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04d94becdcfffe52289f147971a2e0a66cae9cf2667f79896b09d344f352231c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188404 Malicious code in old-decompress-scale-throw-user (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ac07058aa278241320c2b4fc18a86d94746457ed24ac97143b47589a18f1203 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188912 Malicious code in proxima-farout-react-bootstrap-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8de6d79a1a73dfed48c1efc53d474df34853b6a3b421d85f3fc6e594822232de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187241 Malicious code in grus-crust-greatfilter-holography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a838db28e4304c090d7abff45df6991037bf045cae83f8cec95623bbcf772a9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190259 Malicious code in webdriver-manager-cosmos-mongoose-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40fa86b786f980c3c1320b01efae8acafc5bf76d1ad8447eb7724e805a945ff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188403 Malicious code in odin-toml-element-ui-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5661962d1fadc577d8482aca57631a8e89fd2662290ed31824e2467b2c2a2ba1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188183 Malicious code in native-quasar-middleware-cz-conventional-changelog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4925360eb023738a4b9a50e62ee394450cdd5775f18795b8fe6531ab3371729b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186301 Malicious code in convict-ultra-paleoceanography-carpo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c2845167a2257ec7f82721ef915aacbaf01c5ba75ccb341823c0098c0746549 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185428 Malicious code in algol-apollo-indus-extremophile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6cb9de9d2206a2c485bd77fef8f50c3fdea7fd3bf8bef75d8bd4efeee44ae990 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189708 Malicious code in subduction-cosmology-hercules-cosmicweb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afc0b3ccdb5d612b88871a79e3b368e6cb2575a8afa60d447272da1326f0e84a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186440 Malicious code in cybernetics-uninstall-kinetic-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fd243fd996cc5cede18fa41a190ce43db1a1382253115fc0452cbb75f55c36b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187671 Malicious code in kastra-oberon-spectroscopy-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2e7279e1ca549eb0a3e63cb167e9feb16a51f1dedbbf158bf38ddbc2b169e23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188125 Malicious code in morgan-meteor-loop-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70f8ff4fac46120d5c038ff72708bfc1e04ff3b4a1d0997b5a208cd5adfdcf26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188549 Malicious code in panspermia-seismology-yildun-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e927520f20267093119cf7131661336e17c154be2ed667440613331992e1154b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188854 Malicious code in promise-carina-astroinformatics-regulus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2014f330645c8ea66f04b127b546ef18c580803da86446ae01e44eb618d71419 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185867 Malicious code in blueshift-standard-altair-higgs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2495eefe689d12164788cd5f8932194479b7babae1155e232d3b3ff8d369fa2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186441 Malicious code in cygnus-got-nconf-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf4cc3cb622a13b0cbc50c9a597f40074fffcb794cc7735f6e63a0046d3db721 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187680 Malicious code in key-class-optimize-notify-fire (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d94bf43315a8c1c2893814e9659a334209b0e31030d5d9e792fbd92c4daf7c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187322 Malicious code in helmet-blitz-izar-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7274aac6f97ba8fd1f45ebb661eb0379a9e13bb52fc4ca45314725f2352ed531 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189589 Malicious code in solis-perseus-bootstrap-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66b8d59746c8916f2d0e0aa816776331f332804015a10f708950338801106be5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...