MAL-2025-185822 Malicious code in bioinformatics-proxima-uglify-js-rimraf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b2714f42d0f923659472aa13696e78a1b29164f409010a8320d0433129c6c99 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186427 Malicious code in csv-aldebaran-biohacking-cluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4682194840be5b284736379d66a1361e2224ef9402500c3119e5691566cb4041 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188781 Malicious code in postcss-loader-install-thuban-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 778749957419a4be0f2a22c512b8fe2d8c4492150fa5d08d04f64eadb7e70703 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186247 Malicious code in commitlint-chalk-neptune-auriga (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b475ac7ac71842a68d453cdd91b991e9c197bcdeaa1c1e63eabe9242691e332 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186397 Malicious code in cryonics-neutronstar-webdriver-mocha-whitedwarf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a4b05c0c53a0d448df82872cee2b18e5bff3f2660a4e6b65d8944adf0e9fd96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188919 Malicious code in proxima-shelljs-spinner-brane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f7bd32ce89463fc87f2bf996cd96de28e6fa265c87a586e1414a63e912a88fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188698 Malicious code in pi-validate-water-test-tau (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ecddad273b22a7a6a747b0fe0d76b37f55ab197c1c73ad7f8f48726d7bb7c1d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188829 Malicious code in private-sadr-proxima-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e89a93d2578c57cd446d95f50d70864c1820065c9b1d1096f45db5d6497ba4b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189741 Malicious code in superagent-planckscale-prettier-transform (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fca005387f6cae31e007b8f9b1d5e146cfcca77b5b5758630e77c134eed57fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190029 Malicious code in uglify-zeta-tree-delta-runtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c2a9aea8eab50320c779880a7b814aebf214304d7a582738f948d6c44cf0d10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188278 Malicious code in nightmare-start-meteor-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01f618ccad5555d0a076b5f790e8c22ef5540f29809db86a35b06261b90dc6c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188189 Malicious code in nconf-cryptography-paleoanthropology-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8375332da92fc519c44a3234f51bc3152ffafedf0e05ec57d11f6f07e55f08d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188183 Malicious code in native-quasar-middleware-cz-conventional-changelog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4925360eb023738a4b9a50e62ee394450cdd5775f18795b8fe6531ab3371729b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188016 Malicious code in meteor-chalk-blueshift-gulp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3261ab78dad9de4315430701c10bbd595ac7f1148a275b466115baea23d4af22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186296 Malicious code in convict-miranda-deimos-astrochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04db394617dbdeb6aa28e0264b9f8042468ed940bafb4b05d874fdda03d6aa6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189351 Malicious code in sass-loader-canopus-mesosphere-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfd6bbcda59d091061be1dc396ddc1689c6765b89ec42a4abe98eb51e16a4fdb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189494 Malicious code in signal-authenticate-cluster-await-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a9c4b67b3adc6ae2f52304f08d24dafce84d84d9f5fa1ccbc8017c2dc638b4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188171 Malicious code in nashira-dotenv-parse-variables-gulp-lynx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f07680065e1750d77fa79d213b3d258047a7ca301196ff1c2812354b0298015 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186083 Malicious code in chai-prompts-auth0-geckodriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad324c4ea61642de7103f9b9dd8dbcd82c0039694bf830c253f7ff3fe81db1ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189444 Malicious code in sequelize-hawkingradiation-protractor-quasarjet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f4571fcd4edc03bc69c09205dd532e4160f422b4b3a5e822f069e5c6aa5e483 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...