MAL-2025-187101 Malicious code in ganymede-flare-aurora-membrane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0243563bbd76210b34b5e68a36b4784afe93fd2191c332071ac47dab89494808 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186820 Malicious code in eris-sync-loglevel-dorado (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eceef989feeada3339ec402d1445f185a3b004a1f1c1c4a71553971739a38d8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188946 Malicious code in publish-antimatter-augmentedreality-hawkingradiation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0d5d6b123e34a8689a89de8c4284bac809a0af916cf5f51956e0bb8bcf35c67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189258 Malicious code in rocket-fomalhaut-sirius-kronos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 344f2bc058eebc6954eb5e9126619426a4e49a9670f2df757ea7590314e6af3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189642 Malicious code in standard-altair-izar-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7aa4728fd5bccd6fec6ad0f4459479b41c02571c837732ad3e92688a04eb9bf9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189970 Malicious code in transform-version-sequelize-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e0b260696b6e01b16b95ea6411e5bdda668fb587ccda3c63e369cde6cd117d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190118 Malicious code in ursa-testcafe-innercore-planckscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dfce035eabf7825c0a7f26269b5bf0b12829681278f18b5eadef5359a7fca39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190323 Malicious code in wind-execute-authorize-mu-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1bce93345caea591cf340b36a60b30e9eaa3c806ef3f71fbbf3a81acb565f6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190023 Malicious code in uglify-js-buffer-exosphere-soap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8bb473d9060c37f760d1ef8d7f47d1d6070940920e1b8e73a875e381abe8fa6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187228 Malicious code in grep-emulate-module-assert-chi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c75466ab2e6d7a0911b9994ce70e2bfe94d442f610e416ddf1214d0dbe6ead6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189849 Malicious code in tectonophysics-pegasus-neuromorphic-enceladus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5260fad6a008f7b1ade8ed6226e0a569863730d3a911516ecc1888f7d5740747 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186956 Malicious code in fermiparadox-redshift-rollup-plugin-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfbf33468d1a669d9d3768f32cc08b7d8834db618abdd21c594206c8359a7542 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187686 Malicious code in key-static-authorize-authenticate-quick (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a361e5c13ed17dc3b23fef4d9066f074e538e8eb981592f1c742c994e18d15f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187288 Malicious code in hawkingradiation-aether-mesosphere-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b33677574330eb0f97322854d638a9210badd223d764bd7216dd99dbd4dd9d14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187827 Malicious code in load-abstract-final-static-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b89b8ec8cc2029f323602737983cd24b79fa01ca5928af6beadf253afb737938 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185992 Malicious code in callisto-module-module-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 356ff25afa3f90e1c8c9dcc12dbc8a9ac87666afec50cb83e076db197a2abac1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187221 Malicious code in greatfilter-lithosphere-isostasy-rocket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46f7d248bef693a8fe521be2c4a3d53ecdbed962532c5d5fdff3115cdb68648d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186520 Malicious code in deimos-redshift-plutology-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80168c73b44e90a928ec018382d63c6a2d7f6cfb4ca8704de3974a762297e32a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186758 Malicious code in entanglement-greatfilter-void-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f5c938a40aa714464f758cf9b7ffb6b9ac75e1e0bfdfb7fa0e1b292f499d3135 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189520 Malicious code in sirius-react-bootstrap-ignite-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbc6dcd2d217e217d0b5ccb225e7f9e203388db94165fb0a422d99841f2ce048 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...