MAL-2025-186839 Malicious code in eslint-config-uninstall-mongoose-superflare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4389e7f6cba244996efe78ec18203346fe48ed7af508ed9911925bb724a6fdee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186368 Malicious code in cressida-indus-epimetheus-borealis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86889f7ce22f369521ce2fceeef29b4481464a118b534f7a620ce86b6d283dfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189958 Malicious code in tool-tailwindcss-cosmology-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 024cbd055f4aa386cbd24118ce725f651db3fc425f37acf6453c7e535d8d1d1a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185538 Malicious code in archaeometry-rollup-plugin-astro-install (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1dcfdaa9a4222852d826a3e0212b6a3584a79729124a8ff9ee1178222bb3de18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189220 Malicious code in restart-jabbah-module-quantum-computing (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 754f89bb05d71cb06dabc0ad38d390187aa8c02187779be6e45282fc31257f37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187903 Malicious code in magellan-gravity-solarnebula-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3462e73d45c74f94a7ed03e5a2684f899b513c79d7d44b35e47dbfbcdbd206b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188955 Malicious code in publish-prettier-stylelint-seismology-cors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43052a28656f175ae88ca3541de9f3932eec1054bee702e2ee6c71eec895aa73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188240 Malicious code in nestjs-luna-meteor-despina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5dc02951e53ebfa9301168eba0b7c56d46b25e61f53253199174afa594b15df8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186362 Malicious code in cosmos-public-warp-planckscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1aef269ae3ec3a16314758d9c600b3c87b62899a0b3acbcfade8eb9b93663658 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188787 Malicious code in postgres-asteroid-readable-dione (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fde9ee609c1893f744ce44f7e17918ae0bb056420c1a91a06cf22239e5736047 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186927 Malicious code in express-cors-dysonswarm-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d813d65a50244ad3649baaef287695f9e5c9fcf145c42566664a40f4d368e4ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189057 Malicious code in radiant-nestjs-parcel-apex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e61d794783712ae79ac94f129279432d13a6897e7dd8913533fbd9b8ad83290b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185756 Malicious code in baryon-sublimation-apollo-shelljs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb3790c726df7c55127d84310d6173ff9fed277cd8b991cb51403c52e43c5f97 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188379 Malicious code in oauth-zenobia-mechatronics-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09a302ded4491038396a7065140b8b3fd0cb60afdd87d680b8a4d45bbf1a26e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189001 Malicious code in quantum-darkmatter-native-schema (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df4b7d2e949c0c56d06fd440de24261c533ae34fa972d0a9fb8cd3cce716c207 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189065 Malicious code in radioastronomy-mongoose-inquirer-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98b90a3ad43fd3d17f857f0d6f4fe80c069a4b11b70c9356b9193d840d067320 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186349 Malicious code in cosmochemistry-transport-primatology-xenos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ff2101008f7863c4b4d8402054e9a5931b5691f5e73308b644efa39be7f2925 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186461 Malicious code in dactyl-phoenix-rest-gulp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfb399e61ec78cd7d61dde7ece649155031041bfc66b022c9f0ef12e3b509ec8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189859 Malicious code in telesto-typeorm-google-vuetify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b173f96bd85516b6815087b4c7d3b8f70dc559d0196a8296afddfef6961b251e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188021 Malicious code in meteor-dysonswarm-geckodriver-grus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a885a9e540e123aba57de65173041c29a0894ea5ce3a14b3f8c7ef0369341f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...