MAL-2025-187607 Malicious code in jest-astro-despina-aurora (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 569fa8ef9fdbddd1906550949c47b3b5176f9b5c58439068442b4ef54ed34221 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188199 Malicious code in nebula-dactyl-avior-thermosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b895ab836b821d1e6ce731d76f1e43dfe64ebbe729b953e0ab44c71f0649c411 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189066 Malicious code in radioastronomy-photon-eslint-apollo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a645989f783782e13048984e4e9fbd513842be85a2bee02ecbb304166d33afd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185669 Malicious code in authenticate-array-cluster-mock-import (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad84b36cde33af206233558b2f96f5182a2836be13c44e5c3ee34f9e9e69a6a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187186 Malicious code in global-sadr-polaris-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2758efa7f7aea7bd87750404b0663d363a1b4c383ad6baac3c731c85ce6b1277 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187675 Malicious code in kaus-triton-sadr-aurora (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea9faf4f30b1aac05c7e7a00fe9b84e14833a19549318de6dae1371066e68ffd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189784 Malicious code in sync-decoherence-xanthus-express (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 302cb9295281a82475b3d087e5c9d61e6f97dff44cc081a850b4044c5e0991c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190393 Malicious code in xi-moon-star-fire-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 362014d5ddaa5609b560cef0f3912766ea90c9f16f84a1fd7f3d1750deb77951 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190234 Malicious code in wasat-photon-await-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9928a8be2e63151c5a44872a4540168eb5702dc997d95293ab99824e30466315 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185823 Malicious code in biomimicry-decoherence-paleomagnetism-despina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a81fc4c93a8ba3ae314ab90c18d782c9b0358062bef26f37667009c6f91eca36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188988 Malicious code in pyxis-blueshift-metalsmith-enceladus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d35b14481cf4830287c5d9e4d6a2a178a989b10fec0b5b95a622eecbe4ed1820 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188336 Malicious code in nodemon-slides-frontend-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4161a9733ad0657a992b0e3b792993775b939fbc4452872a0be0abdc96d50eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189370 Malicious code in scale-hot-tree-cache-execute (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca31f523c05889fdf9ef41a4517c7fe41532a653c9225ca1d2fc0b4f96c7b705 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189365 Malicious code in saturnology-titan-solis-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ac9c08c9f27bb03650f8aacbbcfb13a60b7694d383429b9b3af11edff258327 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186454 Malicious code in cz-conventional-changelog-heliophysics-carpo-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87b43b39469f3044ffca305f0206cc9adcde03611a0fd8cf39b08d0230171522 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185702 Malicious code in await-tree-cat-omega-authenticate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5df03d42eced0fee0ab57f86188cc77eee4e2e2c0abb3e6adb7cc5d80692950 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187252 Malicious code in gulp-kinetic-mongodb-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7878006d6f8f7caa40ce0daf78b2c246cba2cc4a065213449dfa1b7d77e316f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186768 Malicious code in enum-proxy-sun-omicron-nu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f1ce60002a208a96e55d2294bff4e57212734d00871e99d52812712e529377e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186706 Malicious code in electron-tool-nashira-gemini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33b3527ef543cd69dc1b34fa0d37ad7afefd89e8a81e1a3ee9587b8811cac440 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186640 Malicious code in draco-hermes-betelgeuse-auth0 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e3e9fa277eb2731d2e5d6b112e3c7dc4fcd0328ded4825757ce1929bf1fad88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...