MAL-2025-185538 Malicious code in archaeometry-rollup-plugin-astro-install (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1dcfdaa9a4222852d826a3e0212b6a3584a79729124a8ff9ee1178222bb3de18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190096 Malicious code in upsilon-sed-authenticate-await-tau (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6dbb71e85d3dbf6177dba502876c0dddbff9a6bdce3581eed3cf2d973df98356 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185827 Malicious code in bionics-geochemistry-request-supercluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cac740f28941da0a81e3c884f0b32e4cba846dc3c9eb99be0b220455fa4c2bf9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187993 Malicious code in mesosphere-planckscale-quark-promise (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8d07423b5f8c97806ef33cd07907b9d3741d1537e90765b5c1d3d325e6bfb04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187269 Malicious code in halley-pm2-semantic-ui-commitlint-config-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 207baa0abd8ece63fe60c3b6ed72245a1fbd0ab7acbb419f0f280f5e15470fb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187276 Malicious code in hapi-orogeny-tardigrade-rate-limiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87cca49ed0443fcba435da5ad6b7b18a4587c6827a86961106867224991472ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189685 Malicious code in stream-janus-soap-juno (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd0748be6aaa678054ffec1227c9412d1378a7a4ce501ac61fd6eab94006e013 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190093 Malicious code in upsilon-fork-pi-index-emulate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76974f55a567f0b9b70350fd1ba445bbdfefa6a623c5d9e10626436c7b19827b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187348 Malicious code in hermes-version-mdx-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5006ef0eabe6994dd52d5fe0f9aabf541ce2dfe591b583436dca8eeb42495bf7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188510 Malicious code in paleoclimatology-hydra-schema-genomics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 790e79965034e461bb2ea78fcd7d8d2a4d35270bc4f34ab6bb58bdeca578185a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188580 Malicious code in passport-scripts-blitz-antd (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df65c0c8e48693fe233a79a8411bde00985485c82e5b8bcdd73ed19eb6c312b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190465 Malicious code in zephyr-leda-procyon-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fe90ea46f9c1ef07ae94408ce10711a106d0376ef8a4fa2d56004aa48135a37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189259 Malicious code in rocket-got-heka-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 778e69e1b6a1c981f67cb6ad0fce677345c087976404dfb27b70709dfe9619e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186364 Malicious code in cosmos-volcanology-cassini-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e7589b6b476a0d49718b7677648fafc99e80a2deff34cd47f56d644c1346d64 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185996 Malicious code in capella-biotechnology-meteor-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7007c2c8f13c28e4f7207166e71ebaf1dd15e71fd1b55b1f8686c74a636216bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188310 Malicious code in node-config-private-zenobia-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c726f498d965d5ca0aa4bf03817a0858351167b13332a7cedf47df996d3a0ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186667 Malicious code in earth-visualize-abstract-beta-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9cdcb9e255cb40cbc9b3900e368a05edeb31be8f58530b34dcf7f168ad49aed6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189549 Malicious code in small-validate-psi-import-stack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43d7b4de2fec94ecc3e64457296eee7bad6bf2f1adec37f073c15252035290d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190372 Malicious code in xenon-graviton-gravity-pulsar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa5cd3c1a720ee5addd563d7161ef6e801e83409e8f804fd7355ef0ddb38c2fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189483 Malicious code in short-shell-data-private-bash (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24b7316c8d5324f89c708b06b8523b6c7c30d7ecf843ecdba78f78b921ecb7ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...