MAL-2025-188460 Malicious code in ora-polaris-uranology-planckscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c94ca100618990dee2927e23b7d9bc5d41e43bd37867540cbad3756c8b7b740a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187640 Malicious code in jupiter-aether-markdown-pdf-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3047528b04a36dcb7ded333eafd8a31b11d90bc1926d32a82ccd3036dbbf7120 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187334 Malicious code in hercules-css-minimizer-webpack-plugin-cz-conventional-changelog-dorado (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d95fd0ce23afe24eb49a8592e43e5bfafbff1956c11ddcde2f1b53762931d47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189503 Malicious code in simulate-small-enum-protected-cluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 672b0b691d23d606b8429a3496d6d9093a46d4507098ad9e64bd69460d7bc129 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189374 Malicious code in schema-dependencies-paleoanthropology-xenos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a5aa35035cef2c1cc6c6bdb74528d86c9297519b890f65258d575cbc34a28f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186207 Malicious code in colors-request-xo-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1498b0185b55cab24bef95e606502bbbd2afbfe23c40d14a9b5f91cec7b05faf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189000 Malicious code in quantum-computing-technosignature-ablation-bulma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac35117eec102497f8ce0b0b5acf8d3e1e4d43654662f1ab0ee8af683ebeaf39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187440 Malicious code in import-uglify-shell-assert-key (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d50bd88fd1544b70a1e57fc9c10d6058a210842a8d2f61d9caa28c034c05fd7e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189877 Malicious code in terser-webpack-plugin-rollup-plugin-cybernetics-lacerta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6b7843b7f7891a049059218853ee6c6a14322926fe06a83bd6cb691a16048b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187903 Malicious code in magellan-gravity-solarnebula-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3462e73d45c74f94a7ed03e5a2684f899b513c79d7d44b35e47dbfbcdbd206b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185608 Malicious code in astrophysics-mesosphere-neptunology-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 684bd004536091223ef4c99151f120e9e68cf9d9e4b2583634be658dd965d50d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188114 Malicious code in mongoose-electron-bunyan-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09ed494efd702fa86dbb4eb80c161c3843775d08315479692bccbcbd4c8864b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188966 Malicious code in pulsar-apollo-decoherence-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abf551a8a06ecd6a92721cdb0801dcf865ffc04b38a01e16d0c850dbdb17c9a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190483 Malicious code in zeta-try-stack-alert-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ae4c0f872d31213b4fb2f6cb917a89f8c70d5324e237c9c3dec9617b9b4dddb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188369 Malicious code in nucleosynthesis-standard-pulsar-non-blocking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83cf65d391bddac395577093159b8c072f9a32c009def52db0bc36b66a431649 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187356 Malicious code in hexo-restart-farout-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5247e16048caf71cba989ce7d7576f498fa66a44e6060ab73d416196f8e68e95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187311 Malicious code in heliophysics-aurora-lint-staged-global (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3146d8b6e52b168ae00047b32f06d4bcb6748de549b64b41b2bfb73c6bd4abd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187272 Malicious code in halley-unuk-hyperion-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c9506d8e26da1a023822ac60bbd1d414afd9ff2d27728755bfac524a22a8579 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186083 Malicious code in chai-prompts-auth0-geckodriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad324c4ea61642de7103f9b9dd8dbcd82c0039694bf830c253f7ff3fe81db1ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187899 Malicious code in magellan-bootes-resonance-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f8b4773259d5547357d870a866f9e7006b8eb86df99ec58fbc123d7da10ffd2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...