MAL-2025-186109 Malicious code in changelog-graviton-hadron-panspermia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4654a7b3fbdc91ef9d6bb9b21a92ed4ef7c06883f0343185ff0493e3af578e1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190009 Malicious code in try-data-signal-cloud-report (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d49def6b1332bdc84897f7c299b32c7df0ec1130260ea17e9bf6f0969738691d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187022 Malicious code in fork-playwright-joviology-accretion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe5a06ef42fb5690b924816d514ae128fa79405a6dcdba484271ffaa84790c26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186288 Malicious code in configstore-quark-sync-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30c3b67083ef101f23672989003756131308861e71de005811d2edde2b5f3f8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189007 Malicious code in quantum-sirius-spinner-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c009730042d0c36541d7a9147c37bc383153c82e0dff8575f0337d20d263c0f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188734 Malicious code in planetology-borealis-nashira-celeste (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee1f23cd13d09fb85a31f2ed20db00b1b9f7a5eb92eb83ee2f61400026501226 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189898 Malicious code in testcafe-miranda-electron-umbriel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6dc56bc034bb1eb4e4b4fd3fc8d7db620ba01d5807f3200c1c40cfe1f26c695 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187823 Malicious code in lithosphere-inflation-antimatter-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e8af4d7870d7ebc74d3b285580f0b88bc4297bcd5f66c88ffbf251ba78c21c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190295 Malicious code in websockets-hawkingradiation-redis-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 994bdbce332e280e57d34568b49bd87cad47f442aed60864ca334d072929e08d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188784 Malicious code in postcss-loader-regulus-whitedwarf-paleoanthropology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19d9e1ff0973c423e2d9f4461d9daf809ea0aa47669997b06f7a4589bfbc9396 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186353 Malicious code in cosmogenic-spinner-andromeda-quasarjet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3192e1b1356672c3cd9c2ed6782552c38b1e7b45566fb986f074c3a22823a61b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185990 Malicious code in callisto-hyperion-norma-firebase (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0fe17e81c29306f1f25e84d0a6731bf3cf77c77932e4fcd2d1cd2459925b626 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188785 Malicious code in postcss-mongodb-astrometry-eslint-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60d91bb98b69696c0d64838fcc70a1807cd0481ffb5d3b10c23c6c4e4737ae29 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187286 Malicious code in hash-uglify-cluster-info-orchestrate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58a3a53ec24253c6ab5d1ed24fd3cb74c1c53f7311dc887ff7434622f50ad233 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189956 Malicious code in tool-nightmare-cryovolcano-cryptography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a76c88215df8fdb3d155deb47358326c302d81107bace56723235b1944267551 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189393 Malicious code in scripts-yaml-janus-gacrux (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ef6ee6e47d29dabed3deb7f87e614e389d9e327843fdbb45445af49f77255504 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187902 Malicious code in magellan-gammarayburst-passport-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af4ae1a2fe9cec34c0b28482fc1ad0e92f4279cf6167f43e0c372d9c6b17f58f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186560 Malicious code in deploy-good-data-double-unix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9f539fb8f3d51fa364bbc575962a64190641a7845e4ad288836f916b9fe9df7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189157 Malicious code in relay-slides-kinetic-query (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7388419bf031b3ce6ff52f012ff998a88362e853ce154c3126e5a055ef8f8359 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187775 Malicious code in library-biosignature-bionics-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c195849028cdb53692f81b71f60bedc1c41ab1cbecd2d1f708262bccd1f04c34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...