MAL-2025-185656 Malicious code in aurora-sync-buffer-canopus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76b4ed240221e294fa55d34536228a20e0a7f3ca8a80a0e59f3caa86531c263d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186229 Malicious code in command-bootstrap-exoplanetology-paleontology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff1c98741dac0aaa20ffdd44166754eaab39b72cb59265ccace7177c3ad5cb09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185494 Malicious code in apex-titan-babel-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a01730205c12d694b2acae4ea9b3af03584b9f34e2f92fab62e45846ac5136fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187473 Malicious code in ini-quito-stratosphere-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80addd4c113b2cc5947537311ac67c987723ef1ebcd79a98f25b63fe603be5e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188768 Malicious code in polaris-solarnebula-equinox-heka (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a261fd070997dabf0e260145bdf3863f5c5582929fc045bc5e59305fde4782d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190346 Malicious code in writable-jovian-pino-markdownlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19f4b238352d52b2cea590b0446ad3e308f8dced4b1490cf8e439993646c0a9f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185942 Malicious code in bunyan-areology-glaciology-charon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cfc2392c12292c74ee9da395bbd7057c863a1871c93f00572733f8d5995f513 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188532 Malicious code in paleontology-acamar-steganography-commitlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9d1ccb96d7ec2f9626a93f33572ff27aa51718c6e0e1f4bffd1f94f89e753c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185725 Malicious code in backend-crust-cordelia-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9abfdf4b11861c28b5f846e1b02a001c90a9a855d5563ce213d97013e6a36817 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186135 Malicious code in chi-error-kappa-shell-error (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d52be924692085514a7ac69e4324d76070a96c0a3599cbe5efcff36f82206d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187361 Malicious code in higgs-markdown-pdf-kaus-helmet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93ba62848a1b93975d8782477b6f4ac21636b1cd955646b801e68e663f18d5fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189620 Malicious code in speleology-phenomic-nova-resonance (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0964688b47d97de3d008dd858b6c40cbbefa462b69aed624467438e4722a340c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189638 Malicious code in stack-authenticate-boolean-compile-kappa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9745ec09c2bab1bc9a6763f2917d29894ffe39f12ebd0c3511c243130dedf0e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185433 Malicious code in alpha-integer-pi-assert-export (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a34951bfb26b2bf73403b5a41d1b38d6088c5a6558b84230cd7bb1e901125fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190146 Malicious code in version-virtualreality-scorpius-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2474968d15e1ae15d7fe3d765d5e06ca8d713e82add09b6ddc4d7083cda699b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189297 Malicious code in runtime-promise-assert-async-serialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bc1992c047a8d0c1a09bf957a23e5dcf557eeb8778a576e311694f9098eac19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186552 Malicious code in deneb-terser-webpack-plugin-lightyear-enceladus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a910f12a93912cafcd341ae149ac82c7f49fcb236b79a4164a070f32aa8ef5df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186355 Malicious code in cosmology-levels-terser-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 288be03c8843b42fcdfd629ae8d089e419583efc975261b79fa3e9b75d609a23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185505 Malicious code in apollo-nodejs-helmet-loglevel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03f8efa0ddd24ff187a77bfbf2653e94f12a622525a7c6ac90cd8bb470c36f55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187530 Malicious code in ionosphere-webdriverio-module-primatology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cacb870c31bd3d8e50ddeef025ab57d87c7da78f744eab59b8ed9e85e16b1d46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...