MAL-2025-185371 Malicious code in acamar-comet-flare-robotics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df4fa443fc219b32a649b7258c7128b38d90c7010b81b9625f2459c8b43d2a4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188259 Malicious code in new-promise-compress-compress-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3261b6dfc0b0b95954bd9bbb403103d9c6d365e8c535d3e69bcb60b537fdab7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188816 Malicious code in primatology-chromedriver-vortex-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52a6155584522545296ca4bffd3b3c453ee4f2c118bb59f9dcaba2fe89aa7438 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185669 Malicious code in authenticate-array-cluster-mock-import (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad84b36cde33af206233558b2f96f5182a2836be13c44e5c3ee34f9e9e69a6a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187801 Malicious code in link-user-awk-bundle-throw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13af1c15269c3456ca5cec6d14a4862505a34f1cf9fcfb6c89f3e739db65abe5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190195 Malicious code in vuepress-update-canopus-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11c0ba2e936fb4ba21ad01bbf840125a863fbb501192f3e88e43e962473e8fb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190091 Malicious code in upsilon-decode-long-socket-final (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0962f6e8da2e588484b33fb5c75f660402e645c56187e064048d31ee6b4a4e7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188056 Malicious code in mira-apex-lint-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c6ef9b3af85b23ae480e1b74e397be16eca2e4c1a02bd4bc8da7f5925457757 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186070 Malicious code in ceres-augmentedreality-iota-transport (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa891b4634ede31623bc0fcd42bb4d3d610a695e74ed18b4ad58f1634a9830dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189275 Malicious code in rollup-plugin-optimize-css-assets-webpack-plugin-bootes-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a22361096be70425abad1a7efd5cf9876ee3807f16a6b9935376c78fcf0a8d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186662 Malicious code in dysonswarm-loop-command-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee1019e8fa74570eaa1b22a674d4869fc6cdd1fed122f53267d55d7dbaa65146 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189597 Malicious code in spawn-nova-antares-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9165a42167bfaa2160397587a1d764f3ba2df9f596d3d7bad89d935d99800188 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189604 Malicious code in spectron-commitizen-server-jwt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f5520a0221162a9daff8f9fc7fd1859cb9e5017d1fa3d3de33024e017fc173a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185586 Malicious code in astro-ignite-scripts-pulsar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bba3a708c5a453f96034e7c4d3cf4270b696d5f709ddbdde132492bc811cfcc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187858 Malicious code in long-module-report-abstract-alpha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c75fc5f13dfae551ff47efab8b84afe20fe478cb03f51553888aa3114d28fc5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189828 Malicious code in taurus-heliophysics-commitlint-config-angular-superposition (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3142a8b96d0c8015bd6d17f6e9038ce57ea590fb830bea588d1c9105ba3e48ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187547 Malicious code in iota-stub-wind-quick-promise (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 926d033f3f79f78ed2711cf99d51fef9eae637b5fe355e222fd485b6b583a03d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188459 Malicious code in optimize-uglify-cluster-string-refactor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9357c297db533d262818f4d94e063b4ca7a1de545294cd6a542cd3cfd595d937 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185656 Malicious code in aurora-sync-buffer-canopus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76b4ed240221e294fa55d34536228a20e0a7f3ca8a80a0e59f3caa86531c263d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186229 Malicious code in command-bootstrap-exoplanetology-paleontology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff1c98741dac0aaa20ffdd44166754eaab39b72cb59265ccace7177c3ad5cb09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...