MAL-2025-188949 Malicious code in publish-json-solis-apollo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36b79bc427660fde7546adeb7b221fb798510e3dba9b23eee59882ced30ba256 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189893 Malicious code in testcafe-canopus-graphql-markdownlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f4cfec36e2798cb46c6101c52a91328a2ffb0f2c3298b732437bea7f1e20372 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190426 Malicious code in yaml-iota-jasmine-norma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8425bb6b7f07910bd25a68dfefcdb32430f54afe0d64a10bd237cf2ec705796 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190143 Malicious code in version-meteor-jupiter-chariklo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8de3b988f0f3fb1fd2117a656b4e08db5bb4f37c268c474f1d899daeeacaa701 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188479 Malicious code in orogeny-karma-babel-sequelize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5bd1ff628c7a9533aedbbedf75824f88072126471f9c3a012e94369c391516ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185503 Malicious code in apollo-geochronology-stream-readable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1853cf9a3f20a918e290a6d47a2239df7fb6e98aac8909d1af2210c7b228b0b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185382 Malicious code in achernar-ursa-server-testcafe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0d7856e46345ac0a8d4e9a71a876092fdd5bbd9080d350dfe107e611ac8b883 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186908 Malicious code in exoplanet-xerxes-interstellarmedium-octans (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56f6b83f3bf5aa13c5c240a68822042cd334b7ab9ca7607f5c0562f4b8966fa8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187041 Malicious code in foundation-rigel-pm2-foundation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 775fd4bd5df4bff7878c3a9a5430e41c9a9cb298d7725b017a3cae2bbc74e668 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188161 Malicious code in mysql-heka-version-saturnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2111a15423e5ec2213bc83b5a7ef30ec0580c5fba728b2b7a7a02b828883b69b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185916 Malicious code in browserify-nodemon-proxima-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f8fe0178708beab3a0e8eecf0b864a676279dca80cabc51fa9d0f1f2d2579c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189887 Malicious code in test-sigma-reject-daemon-cold (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4d5779091401cd3ba770f292c82da9cbaa34004c715553eda2967832efced57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189689 Malicious code in stream-yildun-bootes-neutrino (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 44feb90e525ec1381552034b9dc1728345a6d643d0c8790072c8a233cc41e200 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187920 Malicious code in mantle-mini-css-extract-plugin-singularitarianism-areology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0ff722dde20bc419da2c0fab62920ba320fada29e63e642f21743e99b42aab4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187535 Malicious code in iota-centaurus-blackhole-cosmicray (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe9edd2d1e8b436561ebe0f717ae927f48886e57234216c51efa7ee60e1199be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188770 Malicious code in polaris-typeorm-carina-solarnebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cd39e7155d8520a5724569d8afb03405c8267596fb7bf5b3a99361f880220d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188433 Malicious code in oortcloud-zephyr-kinetic-acamar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51b32d3835116fa51b0ca9e1a21f2e8ae7dbce3dd0ea885e925e6b8237c337bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187599 Malicious code in javascript-magnetar-epimetheus-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd836a25d5aa73f526777d2c602b2a919e137b30c1167b63e65262a3eece2544 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188873 Malicious code in prompts-radiometric-passport-geoarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0758b16dca5d6cced10fe96195a7c2306a87710fa84a7e5173a33d16b608468 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190254 Malicious code in web-container-container-sigma-optimize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76f4e0c5360c2b3e572b5d6ed0ee2e4021c2e71ae32acc87dadea5d19cf8656b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...