MAL-2025-186961 Malicious code in figures-archaeoastronomy-hadron-enif (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63ae70a518089c6ceb6593edb3b798ea5e1e93fc9ede587652dd6e24c212556c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189453 Malicious code in serialize-minify-decompress-mu-cron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1746b39844b7d17daa12b977f8d00dbc6391d85c4c41c6d6de6c58b2cbd8c66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186470 Malicious code in dagda-geckodriver-perturbation-geodynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1aa898dd9b0ecf67bf135b03027d809bf8a597128a8fb16ea32387a5fd838ff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186011 Malicious code in cassini-halley-jekyll-less (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfd52a72d246c6814a27d6224892b221e16e0799cabb54223fb2bf8d9bc57b74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187073 Malicious code in futurology-aurora-express-graviton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d09150a33d0cd50a26dc4d3bd21db4685386b647c7a4261be0ee5d3aa92dbb48 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186612 Malicious code in dotenv-hexo-apollo-cryonics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 199267a35ed5937ef5f63c6920324dae39fe64bc54a1dd7c5dc19a3157ede4a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188014 Malicious code in meteor-bulma-augmentedreality-hexo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69a98a414d2ee0424f8b9bf8fc79623e0b8b7fa9ff1c5249382548f140103353 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190296 Malicious code in websockets-kinetic-janus-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b40b5853ee3b4de685feaf1b32ad292ac1711fbe189faa330594cdd0f9238a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189919 Malicious code in thread-daemon-try-omega-mock (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1e433f4a84e6efa7b11638b10854c927218008bde39976e0df1922164229fc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188947 Malicious code in publish-ichnology-eslint-config-luna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1632875bdcfe6f85b8d1e6bf0269dfd2a2eb7755789677cf74531f47a7a1d82b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185840 Malicious code in biotechnology-halley-redgiant-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be587c196677b01b0966672ec9c47b63943494c056f4e7e118ca6ae67eeaa0b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186481 Malicious code in darkenergy-janus-firebase-chalk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27594d376e7c3488958eef232401459e1718d977f3910af62ff4d9fc27a3551b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189133 Malicious code in regulus-eridanus-meissa-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe9ebcfb13b4dae50d2ace3ef1ea735b3f71d9f8e886e7583a36ccfdac361cab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188801 Malicious code in prettier-plugin-markdown-aquarius-colors-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93e02a281f78f15c659fc2bc0017a1f4fc72c6e3519a06df0c8b38338db6ed47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187513 Malicious code in interpret-deploy-omega-async-fire (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9548d951625cc682aa2b671f44bdb5b9bc083e3b6c50b33272d8daac848d51a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185959 Malicious code in byte-root-test-kappa-sudo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9828a39584b83c1b225e4838169006453b25472c92126df3386cf377a7da123f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187271 Malicious code in halley-subduction-zephyr-paleoclimatology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be6a4751fde16eaa87009873625b6b28179216a0bde52389669c39c7f0ee0d36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189863 Malicious code in terraforming-nebula-cordelia-virtualreality (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c189c82723ce5a436c8482e4184626a3def10827f7f0f3bd4cb2a84f806b4040 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186486 Malicious code in darkmatter-exosphere-exoplanetology-yakutsk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66fd91944b979138e05bf2487dcd84925f2788baa8346eb2c5452959746d963a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190123 Malicious code in user-boolean-info-decode-try (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5255d33f074e4f791a5dccd9e6d57315c6fc8883da3342c9b4a0a9ca8c5fb24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...