MAL-2025-187413 Malicious code in hyperion-kastra-paleontology-magnetosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2d31eb3cd862886d18136d81f8bb0cf91c2c741c8992f6409480b516a287b79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185965 Malicious code in cache-meta-root-try-key (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0e240ecaa5180d2c3bb0773d383b7d3624ca22e35d3c052302961ef5c975b67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in xenon-comet-xo-quantum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 052d305986eaac09c0a7186bb66c0d5c0c3ab65f1a3b1b59a8649f2412ade857 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188028 Malicious code in meteor-meissa-airbnb-outercore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f90614fd54ad4b93ad60971086709bbd736fc4d959596cc79df4ddb78e672937 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190212 Malicious code in warn-class-proxy-cron-earth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e5331e42e3534c01268c91bde85f93841803534273b5a092c7800660b1d4ed0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188358 Malicious code in nova-sagitta-pegasus-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ba21826bf8441b5f8669b89056183151cc9cc9795e5a3f9d08c1ba1adc2ff4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189333 Malicious code in sails-soap-link-webdriver-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1eacbc309f43b7b1aa6ae69633d9efe8c8721438d82fdf6da228ed4f8738927 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190485 Malicious code in zooarchaeology-darkmatter-higgs-algol (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e40bacfaf5995390d7123e836a60c8f771cd8c541530f8bac5be2044ff74b519 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186313 Malicious code in coronalmassejection-holography-dorado-command (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5eda225e7909dd8c03021f5bc15c82e2f1af5e4e548fc4dee4dd4cb0f94fad75 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188621 Malicious code in perseus-cordelia-google-express (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecebc93fbcf3aeb606dee2d52f301163a9c3530562ae4bc4d9ffc92e5b94d41e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187694 Malicious code in kinetic-paleoclimatology-holography-tailwindcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 967a55f1f97c9bb48caabe10483190fb7f9c204de61b96cf1f01134cf561b309 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186855 Malicious code in eta-psi-await-sun-upsilon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8e359baf44a269b2db394ed9a2256f320bf4de5b0af2165d64aca8bb9522f5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188573 Malicious code in passport-auth0-levels-biomimicry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b0bee65acdf68a6737b8995d1143686b1ef9027fdabf5ae14fdd070cbbf7242 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187093 Malicious code in gamma-old-visualize-web-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c85b8c83f11198dd37909d77ea949f07b7f4f84ed769cfb14f898b385924bd0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186067 Malicious code in centaurus-superagent-spinner-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91d406ed50d97258b1c60ee835ae0350d359b3f8576bc1a5411d4da722d37cb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189808 Malicious code in taphonomy-quantum-juno-eridanus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af1c55fcf778bc9a94c197a9e35bd380a006dccfdef8a994237a6c866a0b39a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188582 Malicious code in passport-semantic-ui-miranda-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a277e6b110c6a4ddfff8bbead45f6d4b7425d4afb2864b265afba03f6b45bfc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186403 Malicious code in cryptography-cross-env-google-yildun (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 919e037d7178bbdc5cbd024f17c6cf5bb23091ba301945f2431560076af9bd8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189883 Malicious code in test-janus-eslint-config-materialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec79023492b97711616187adb7b16741d7d4baf291a1de140a8c20060aa9f434 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189695 Malicious code in string-deneb-string-spectroscopy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 863eb46575a339449bfa620cbed48728a4a0680a0b638d8ef0292cd6d43e3f65 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...