MAL-2025-186326 Malicious code in corvus-vuepress-concurrently-elara (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e1561f44e67d0868f2fc1f6fbfb73bab11cce44a263ac47614b49c690b618d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187881 Malicious code in luna-xanadu-aquarius-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbc41d7b808faaf60c42dff26f6f47331e3bd6a23a51389d3ae2a88c7c0f9c7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189256 Malicious code in rocket-dynamo-supervisor-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80b41f5a989473e5be9b2bc5751e31d7d24fad060b49d6606c000ce2dc8d72f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186779 Malicious code in epigenetics-graphql-tailwindcss-abiogenesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bd945513f752e172da155108dae68cb71e0aa8ee82dbc96af971f7560437f08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189914 Malicious code in theta-air-char-import-phi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6554dbada648b16c3259f41ed32bee5cb2e64e31f59ae3378ad2f37ff181bc4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188265 Malicious code in nextjs-octans-interferometry-fusion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81ffbcf6edd07fde0a671041eb74ddf8d1620fe1cb6147cbee37b45eba572519 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188636 Malicious code in perseus-websockets-wasat-hydra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f66d0b03182f5ad40988a628f5788de95e072ff2c025481ebef25753777e4abf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189472 Malicious code in shell-process-eta-star-omicron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 22452f12649538003c7b3f323d58496d4832fd6041b5b40d946747191db26d06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185771 Malicious code in bellatrix-panspermia-websockets-gulp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 915341c96b286908734e85176bd715f1dfd72315e39061cda0bc575fdeed03ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188682 Malicious code in phoenix-cache-dione-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c61ea44437b917008ecbd1d94b0404d4d54de209060e2a6548bfe2374ef498e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187423 Malicious code in ignite-callback-cosmochemistry-paleobotany (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f4aedcf4678e453f6fbdfd6adbf5945076be8b34eb44f5e0b9fb8ff3244b536 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186935 Malicious code in extremophile-slidev-radioastronomy-coronalmassejection (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector caabac9e0f1bd1f9c12cdd709f620e7c1e8d2e0b6ee9f0e3e16f1553227dcede This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190089 Malicious code in upsilon-catch-new-epsilon-unix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9918022b07edaa452b3afeb8e220a7dcbac2637d09580b4fc6a95b163cf68d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190169 Malicious code in virtualreality-paleoecology-nova-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8dc1df744f380e841ffc7b91019014063c1c82e664243d3afeaf54a02bf69c5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185467 Malicious code in antares-jasmine-rocket-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4aee983d1436336ccf9ed5669ffc4797960cd6c4e50b1ef18c630a481685241 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189856 Malicious code in telesto-publish-oberon-charon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de6837a499af3bd764db78016d59ed3b3b1fe3f57a03f81847910a466b622002 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190091 Malicious code in upsilon-decode-long-socket-final (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0962f6e8da2e588484b33fb5c75f660402e645c56187e064048d31ee6b4a4e7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187604 Malicious code in jekyll-resolvers-quark-epimetheus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7dc947279fc7b4978324c611197f7ba4d99cc1748bf2d4d42d7484d8dfe30bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186501 Malicious code in decode-info-new-finally-new (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3950f1595598eee2e1fc0c8562e4c8079ca413a304be306695f1846305db67de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189224 Malicious code in reveal-md-cosmos-apex-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e367e933db82adf380c201474730be581cbeb3d554deeff671fb4bf308f2788b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...