MAL-2025-187117 Malicious code in ganymede-webdriver-manager-convict-equinox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a9dd33aabe6b5b026655e8cc3da8627bbdf9d68cf9b8cd88bf86fd96847df16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186516 Malicious code in deimos-iota-luminescence-geochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2829516c5ce8615b2a59e4a46d3506efe33835b6b745515c481d71be3483605c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189358 Malicious code in saturnology-astroinformatics-release-it-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b3567225aede0b7578ed93233235ca67fe147bf5c5093c18d0dac200a90c12a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187798 Malicious code in link-typeorm-nebula-eigenstate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72fcd61b1ebbef2bb21f395e514ac614ffc611617ad7b96a4f87213510556a06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186610 Malicious code in dorado-slidev-hyperion-avior (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1d9b51963730a8f63d82b2a36879f53b58198545402e1f775c81363ba94df60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188517 Malicious code in paleoclimatology-sagitta-hydra-geochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a1b834424cc15298fdcf3cf36c6604def25681045ca6e22569b2396148b5d26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190421 Malicious code in yaml-barnard-jekyll-magnetar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 647bcb1618cd7231944ee6afbd42020458061895e8490b3d485d6225634c630e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189669 Malicious code in stop-auth-epigenetics-neutronstar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d97778258cae0aa68e642d04d7a813ecbb7fe5274fe3d46b749e45ffebf87170 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187034 Malicious code in fornax-materialize-sails-dactyl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e47cd906f3eac5ef7031e9e276accc0a01baa2d72f585d855e5404f4ed629f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188856 Malicious code in promise-dog-link-authorize-boolean (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1611eea74b726b3946a61925ceba39c59029db92f76bdd65a1251f03348d7c2e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189177 Malicious code in remark-io-sass-loader-changelog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ef20101ee38f63c38e24ae8f075da72835328afa3145f6b4e7eeca7e3e984ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188469 Malicious code in orbit-typeorm-nucleosynthesis-tectonic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6dd0f8906ebfbf9c904bb008379e1ef26813caad53f6b2009b17913f630de464 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189482 Malicious code in short-public-permission-grid-throw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99cebd8516a3b996a17b13a2a6d99d754157b97ff1c4d86de13c01ebfafb4356 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186843 Malicious code in eslint-plugin-fornax-auth-dactyl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be26c82a94b33272a9b5391a0f7fe3a8cb9d572639e42301d598f6ff497f416c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190038 Malicious code in umbra-iota-graphql-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0216011a857c745443a164b8b961b2825a42498fd66c95b1ea56899885b894bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190256 Malicious code in web-yaml-analyze-finally-short (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2808c21bacd5df0f6089eb0eddf3fb650035c91714558ba396f5e216b8d51a33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190239 Malicious code in water-balance-serialize-omicron-deploy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10b645228c86dd124d31b5de28c55a401743d95fcfde72307326120b67d14f46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188820 Malicious code in primatology-paleoecology-archaeoastronomy-chariklo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 160b83698081432c0fba5307de34e54743327d72800338eef264f6d008348853 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189783 Malicious code in supervisor-winston-superagent-exosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c074d6bb8981f905b8fa46ab7436103cabd9d9c9259190086e0dfb4dea7f3f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185543 Malicious code in arcturus-fornax-thuban-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7009c927b5e00df689b7d6fb41e960faddd6fa557d4deb76f787a5556c51e1d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...