MAL-2025-186208 Malicious code in colors-rigel-bellatrix-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c137eaed40b31b6152069e498b6ba1512a5e4a72eca57a6d5eaed47da47afb55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185915 Malicious code in browserify-izar-archaeogenetics-darkmatter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7bf87f0fa9cf2004cd9a8d4f12aed50577376be0a09f2da152e72123b8a1b65 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189006 Malicious code in quantum-rollup-plugin-neuromorphic-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e842fa808da7937b0ba24f0e329750b9b0226ba8c29e9ca9e50a21c7e0fc4f5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189157 Malicious code in relay-slides-kinetic-query (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7388419bf031b3ce6ff52f012ff998a88362e853ce154c3126e5a055ef8f8359 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189183 Malicious code in report-serialize-rho-public-file (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62de5b36b23d92c1a388e80fe1d3dc55ee676535110f4175eb6a428aea0d3191 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186580 Malicious code in development-postcss-loader-webpack-cosmicweb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdc7d279a0f29b5bca794be3e6921a4e2c28a76db57e85d79fa4f0cca9313cb2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186196 Malicious code in cold-bad-theta-epsilon-route (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b66a7b1ab047970e217725296ed95d83978425fefb0d1a3e970d4f2ff9996063 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185762 Malicious code in bash-xml-transpile-good-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c110031cbd21ee061558e5100a9248d1164f381595f8ccb51846f7926733560 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186740 Malicious code in encode-rain-refactor-execute-pi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06ee24f91b8cf6e03f7269a7f2c713ec12a15e887c78c0ea82e730ed28149481 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189199 Malicious code in resolvers-heliophysics-apollo-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60103abfcaa8fc26071abc38c8d81f1d5bd8f1c7ce82c117b98ee3f28734ac7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189721 Malicious code in subscription-firebase-buffer-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73b3d3ea91ba7e31304c70d0495d32342ab391701f8f85c6ef96e71bd38a1e11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187144 Malicious code in gemini-sagitta-cordelia-aether (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab8d2311414e1b1acf4dd1d565d5665bcd08dfdcacfc575f768244f7c9c7ca75 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190343 Malicious code in wolf-baryon-pino-phenomic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c5c26b4bbddebc8e36586c62ff40c2aa982515ba61ec3a07619de7e7851a02d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187715 Malicious code in lacerta-auth0-callisto-dorado (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11064afceb6e678c2829e4532c2a26703f08758ccc1c624ce372d6c569a19665 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187626 Malicious code in json-miranda-karma-auth0 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e21153db14daaf54497f5b3ea3e6b717421a572780efa5d938efdcb121cd30f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189002 Malicious code in quantum-exosphere-vortex-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38a8dfbfb03df9e686bbfc44f4f424a75d1ca4f283e5c4dd99b97ae0e381a73b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188109 Malicious code in mongodb-nodemon-callback-areology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 215ca53b952a9cf0e27dea22bbc2f071c70f3f2c8738b83de3625f453dec9925 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189687 Malicious code in stream-redis-bellatrix-oscillation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d28d234dac2b514572f66ad2ad3ccae3cc70103cf5b2461fedbff81f34bb2353 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188987 Malicious code in pyxis-asthenosphere-astro-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e95609c121da15ecedcbd3376b1932b6054e994e0aa2a3f7a388be310bf6c3de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186197 Malicious code in cold-cron-object-chi-export (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45c60002ac5653229eb6215aa13f4ec5c490f97c72faf60b5a0be727c9092c4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...