MAL-2025-185606 Malicious code in astrometry-request-semantic-ui-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4012fb9f1f3a7b3429a717f037da51aa7222de55abc415ee48f54c5141ea59d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187104 Malicious code in ganymede-metabolomics-cryptography-metalsmith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6be32f11163bc54d3aeb742db539967f72078db69bd2365ca559d641cc92a721 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190005 Malicious code in troposphere-elektra-supernova-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fafea2be1de7264163adeab8c2f4d88c984fdf472b377385bfec282df6b6a8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190333 Malicious code in winston-jwt-vuepress-prettier (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e66da85f83a6c52707fb31a1471422b7c312dfaaa2f7333a8af1e1fdcad5471 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189818 Malicious code in tau-import-float-monitor-finally (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79602db3e66087d3167afedf11b524ceb75c27b2b884c56b824281cc7995847f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186530 Malicious code in delphinus-tool-sync-geckodriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 309471f78b1f61e3fba41e092a36d4ae761dc2439a6686d82cea711c93a982ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186745 Malicious code in encrypt-meta-authenticate-log-string (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7b652ac77988fd5095d31173051f104a9282bb6428032f99261ebbee04f6289 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185575 Malicious code in assert-alpha-boolean-awk-mock (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e450137c9d4b35cdf13297029db2f42393cd15a2ac56812759580390db060bc9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186442 Malicious code in cygnus-tool-update-xenos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e6dda9b734db336089ca3b7e1b189859e059a4a50e2263aa85436870537b513 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187514 Malicious code in interstellarmedium-coronalmassejection-hadron-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a445cac5b8c65ed165f968e49394f1d485b9e541be9e0b2c076c6189c278ebb1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188256 Malicious code in new-decode-process-orchestrate-balance (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45e27d28f9ad2788a67a1929e3d71bef664870e512e39baceef376995e2cc8eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187864 Malicious code in loop-cosmos-perturbation-andromeda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f9531a3858a703e8badb0753f120e1b0371cacf46b3ab74d2fcef9143c861a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186761 Malicious code in entanglement-pino-lint-innercore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5bae11fcd1d834d151b4d2a4fabd47aea93d666ed6b8a38c767ddbcfe35e8ab8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187909 Malicious code in magnetar-geochemistry-remark-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4df78ab37688f2bb7ad5ae145aa4a41be2f60db4bc5c2dc265ba44ce7565923b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187706 Malicious code in kronos-inquirer-promise-dactyl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 061924477c364a15646e4464bbe03fb996300c139bfe1c00cc40eef390aa71a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185618 Malicious code in async-eta-try-balance-java (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d16ce88a7db07011ebd02f6deb6abe9ec27e30f28d503c3580ab35c829a94c70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190204 Malicious code in vulcan-astrobiology-wavefunction-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f48cd42be9a2a6be3b8e905ae225912535c292dc4b693ff78a5278eacad6bb8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188751 Malicious code in plutology-cosmicray-fornax-babel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b77624c3e7b1eb6b1cfe6020796522cf5b3b7f389af4d08eb75455d191ead3be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189987 Malicious code in transport-semantic-release-cressida-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ad2ed4999afb8ac268ab70d6a37553264610fe139c6861aa22966b3183792fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189826 Malicious code in taurus-deimos-package-toml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fdb160245be134cc43b3db4192ef85905aace2254ef9e168298ee0cabe4239f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...