MAL-2025-189998 Malicious code in triton-nconf-sublimation-grus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12da63b4396d0564a570e2e7b9c0edef188cfe7ae6d0a8b17c3822aaae97b572 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186956 Malicious code in fermiparadox-redshift-rollup-plugin-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfbf33468d1a669d9d3768f32cc08b7d8834db618abdd21c594206c8359a7542 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187404 Malicious code in hydra-regulus-wavefunction-spectron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6a0feec94c7f2caf416d31bfddb17c067b095aa118051f9ba4b9b3b53c348af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187774 Malicious code in library-bellatrix-cli-cors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc1df04aae6a025d35e24d1c99352e79b2f30d9b4b6ff361adaaeeaa36618854 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190330 Malicious code in winston-gridsome-oortcloud-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db6bfd77d9dd95c84108659afc62dfad4e071d33b38b1e7b726038c0e49792b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187227 Malicious code in grep-dog-function-stub-tree (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a9964b36e487f33b9a7626a28875f4f88bd869943c453cbc0d0f5c2317ec6b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186454 Malicious code in cz-conventional-changelog-heliophysics-carpo-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87b43b39469f3044ffca305f0206cc9adcde03611a0fd8cf39b08d0230171522 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189883 Malicious code in test-janus-eslint-config-materialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec79023492b97711616187adb7b16741d7d4baf291a1de140a8c20060aa9f434 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187400 Malicious code in hydra-hermes-ichnology-ariel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f806ffbc0d1c5c2ac9366ab01274cbf1257aad32af0d5554332dde5e7d2e89f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190433 Malicious code in yildun-fork-chalk-farout (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebcb2d403eeecba5f56dbbda8ec07bc5b9718ea5413a6b243aba11175cfc1d16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190003 Malicious code in triton-subduction-gravitationalwave-sociobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d971551672fcbe7254864db12c049fec86d55677240ce555e99d0ab3bbca311e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188714 Malicious code in pipe-auth0-barnard-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93b3b68d9a0c694ca31182e0583f4bf4ee987574a2c4a765974633b4f89dc72c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189768 Malicious code in supernova-phylogenetics-terser-abiogenesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 869b9375b776171d4f47ddce1c89cbe87af6fe96e7a7980e9ae061b7cb416a86 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186741 Malicious code in encode-route-deserialize-eta-export (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4849f20d06c8c3eb71f943fcebe44c6e682e2c94299b7465ea7d58fde0889c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185662 Malicious code in auth0-andromeda-heka-cross-env (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68c39f6cf6525f4014662ebdc8b1f003fa6c12eb9f5603ce6f8bb3d80ff05d4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189811 Malicious code in tardigrade-mini-css-extract-plugin-nightwatch-blueshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eccd2dbe37050ec44770db072262af063d90c8cbb1f901cc4ab7337d91745c94 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188434 Malicious code in ophiuchus-blueshift-virtualreality-acamar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52340530e8e3adf5630568ae9cf3e1425639cf4410dbbc5f52ee374a406b15ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189058 Malicious code in radiant-on-oscillation-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17ca9d06180b7ce0f8167aa6796479c6ce559c18461c3ecc78a266ab88af199d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186105 Malicious code in chalk-stop-indus-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87bb8e1129a1d5a199fd42030542e91c8c409a534084d9519532cc4057e92cc4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190118 Malicious code in ursa-testcafe-innercore-planckscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dfce035eabf7825c0a7f26269b5bf0b12829681278f18b5eadef5359a7fca39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...