MAL-2025-187905 Malicious code in magellan-neptunology-extremophile-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 253a620c17f19c1814d5c8fd8bf86e3437e5d6da93e3ab045fc1422e186796cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188833 Malicious code in process-float-sanitize-module-import (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67ecb910fc4f1d64005ecea02add03019571d2200808859094a5eb0e0ea02015 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190063 Malicious code in unuk-cygnus-lyra-buffer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3f02499efacb13dfc3d8678b122522cd5ade5bb2985d64d65180c2aae141983 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188617 Malicious code in perseus-astrobiology-xo-postgres (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 209bc773fd8267be72905b2255aec7ca34c777cb43cffc9a378f21758053dd22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187146 Malicious code in genomics-lightyear-mesosphere-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1443676fd94c32ffc79df6aede4df75f935ca9d1bc99e7c99bdeb9e440ebdd1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187777 Malicious code in library-dotenv-safe-gridsome-singularity (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 015ef35070afb3d62e79edffcfc89b48d4d0856e6ce0ffcb8848971476865a32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190394 Malicious code in xml-eris-lyra-tectonophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f15351ff000357cf55920a6174c8fb220b1b8986f075040a4534a6af1db182d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186544 Malicious code in deneb-biosignature-taphonomy-glaciology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 826d1c2ca5b616a8f35e0fd137fffc6f302955dd4f7b5785761a78ec8078fb4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189066 Malicious code in radioastronomy-photon-eslint-apollo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a645989f783782e13048984e4e9fbd513842be85a2bee02ecbb304166d33afd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188533 Malicious code in paleontology-luminescence-less-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e35af19331d041979605aa5f1ebb2526dca47615c002ab578283d3243b83057b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188894 Malicious code in protoplanetarydisk-thermochronology-zenobia-multiverse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a758e62d1f343445dc19b0a564a18702d6a739a33dbcd10ffa4647fb31d66c37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187845 Malicious code in log-delta-daemon-finally-minify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dee3c60623b97e429fcc80b6f049ee4676920660b9fa79e897bbe356209b29a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186666 Malicious code in earth-small-scale-simulate-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49fb4a6ae7bf4b0905de3d73d4d9b8c46faf60e8c2e993b8f02590be8e6893e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186943 Malicious code in farout-resolvers-photon-blazar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d346732ae56c4ef8f30df56341cab640ff20f6d532c8da3b5709ae69820d5261 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189450 Malicious code in serialize-cloud-key-array-secure (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d01874bd4c7f5835f39f72b5f76baf3b4f36532a530bfe790cfd96aaa71f6870 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185582 Malicious code in asthenosphere-dotenv-darkmatter-chromedriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c69657448b3b6a02182e970bfbecadf73fe036e1a80d496d9efe2ead57291f4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186068 Malicious code in centaurus-test-rollup-webdriver-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6148929a592e573d8d4974b55e488857355621d8e6308aabba97db6b5521aeb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187414 Malicious code in hyperion-oberon-mongodb-quantum-computing (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6bfcc2fa60e4107cbd635039755ee95dd1734cf3a96d729c4d69c5797c88a4b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187130 Malicious code in geckodriver-sedna-private-colors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f149ce6b2c65b1e81703ed90bcf4bee777daebc79a1605415ce1b09fb9deb74b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190421 Malicious code in yaml-barnard-jekyll-magnetar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 647bcb1618cd7231944ee6afbd42020458061895e8490b3d485d6225634c630e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...