MAL-2025-187092 Malicious code in gamma-integer-hash-double-tau (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68843289b91c66d58ea6949f006e97f32e4b097feb47c1b22cf3d57e75c7050a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187192 Malicious code in good-minify-private-container-object (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b032c4996d44ce62c30eba2b2781375d7b3c99daea21c2cbf85535105cb6269 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187541 Malicious code in iota-levels-foundation-solis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00c2b0af1eef0fba29bf292945385ea48af585baa02b34ea53e9ae76e24eca73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189164 Malicious code in release-it-juno-cypress-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55d18c480ca87915de8b545c8543b1908769b9d71711027a718c1af31ffaa6ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189352 Malicious code in sass-loader-castor-prettier-stylelint-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36be8c6e53454c41e44313eec1651c6e1d576f1ea1012f52e9fa79e27af392d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185875 Malicious code in book-web-deploy-object-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e707ee8e6a7b157de7f049f46c37a2f9de5d01555279c9b19fe13e51bff46327 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186348 Malicious code in cosmochemistry-lynx-ceres-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74ab9a101e57e01b17e4c0f19e62265f783a7a29c6f149b9b13a5069caff247f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187976 Malicious code in meissa-steganography-helmet-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 063f1e0ad2c70958a4aef76f30c704044b1b584c2eeb5dccc001e746c7509ade This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188754 Malicious code in plutology-release-it-despina-arcturus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52a749c6fc4371a3c2293723768a233f315f8ed6aed6c686b69a16951edb77c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188669 Malicious code in phoebe-coronalmassejection-lightyear-jupiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6110a859ba92c977665dd5d85d570cab3c612cfcc08897e35dec24f6e6bdbf77 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190247 Malicious code in wavefunction-crust-interstellarmedium-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04a6fbe9eb989b7506f8400b8bd89e2de56b6b7b55bbda804bf9120b204df0e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188962 Malicious code in publish-xanthus-cypress-redis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cddde1a52ce767fadb05cbd31671938c574d95abb54b2c3e13d2a133ea934da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187393 Malicious code in husky-eridanus-quasar-geckodriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19e89051fac6b87ecbec90f9d80c101f8f3a1d9fe8faf531046b922f215b64a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186000 Malicious code in capella-proxima-geomorphology-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a0a503ecbcebc9e7441e12ddf082270bfb761262e5edb8916dc4925b0eaf7fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187806 Malicious code in lint-janus-juno-blueshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09c4d24d6c0937c0a916af5b388852eb2c5e7fb318480dba1e23ab03c3047296 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187859 Malicious code in long-new-report-analyze-permission (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a5911bc821953db265ad24e2c3eb594acbeef9e54cce5fe51e810fa1a656cbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188199 Malicious code in nebula-dactyl-avior-thermosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b895ab836b821d1e6ce731d76f1e43dfe64ebbe729b953e0ab44c71f0649c411 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189762 Malicious code in supernova-cosmogenic-buffer-bioinformatics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ade48535ff4a6ae12b960998a8941ef26736e6e67fdc6d33d49b63d1d21298a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190408 Malicious code in xo-mini-css-extract-plugin-vega-koa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 341b0fee093a5bc333b9bc719cccccc3a0a2761c15e4f1ae597b33f4a6d534dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188526 Malicious code in paleomagnetism-levels-rocket-dependencies (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac6239ea4745b7e2cbf904de78f70e9f3f56989717525f63879e5b541bc276dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...