MAL-2025-187375 Malicious code in html-webpack-plugin-multiverse-proteomics-blackhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f04dd975db833fdc723e01450c24356d92668375df821a448e8323c02bf11fd6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185812 Malicious code in biogeochemistry-xenos-nashira-petrology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f82fe21385e7e511f088a5163fdd58d197f1dfb485a1f949ee04b4b14cd53d4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188036 Malicious code in middleware-antd-hapi-nightwatch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f16ab9c55f7d6888829aa508c89f33d4f74cfb7599bff11339ce70c0d583a3c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188637 Malicious code in perseus-xenon-grus-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3dba22527ed8f27d29b6a277c13c56373df6604a117eb21a0e723a31111238f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189256 Malicious code in rocket-dynamo-supervisor-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80b41f5a989473e5be9b2bc5751e31d7d24fad060b49d6606c000ce2dc8d72f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188080 Malicious code in miranda-native-cross-env-oauth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c98691086a9cd5b5817eb65f3e3379f8ecc8cd6c0265c8261ec01e76d2f7d4a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188893 Malicious code in protoplanetarydisk-prettier-stylelint-jabbah-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fb0ec18ef13c4eba082ad93c59132fefce6e00204e10ea87e8e9685f5035651 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189682 Malicious code in stream-build-ganymede-corvus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24b83fb6af139dbb9bbd46a83057ddae76e5bac4e17b4d50dc4543a894b03951 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187059 Malicious code in fusion-ablation-cygnus-parsec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 675a39543d6664cc9f25d2ab04083977400a9d213cdefc19363fd94b3fe9fdc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189519 Malicious code in sirius-phoebe-zenobia-babel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4e356e0189aeabe1d3533e01c5b8a0675f2e4f2b23acfdb7648ee90530adf9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185466 Malicious code in antares-iota-mysql-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6b745a215730f800ab23e41a575eb14af8482a22bb5b1a6db13350db681a93e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188433 Malicious code in oortcloud-zephyr-kinetic-acamar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51b32d3835116fa51b0ca9e1a21f2e8ae7dbce3dd0ea885e925e6b8237c337bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186193 Malicious code in code-code-old-reject-cat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c899170e707048f7a4cca5c47d5b69c5e973289a723f30a8f0ca015ae5d82005 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186723 Malicious code in emulate-private-alpha-decompress-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a73cd7def8995cb1c4f464021cd52d52ea06de08bba825ef6747549710d415d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185929 Malicious code in build-hapi-registry-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6d83f597fe639d7acbcf9e97540b25f2a624333b18013c7061e016e06fa331d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187074 Malicious code in futurology-cladistics-paleoanthropology-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e80ad274cf804306e2638784c2803a3f7125c9bcfbdaca2101e592d240ffbe7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185714 Malicious code in axios-mineralogy-pyxis-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 363a084cb89546d1716a8e50fc4400ad1e5f3cd26c06fea728164d97c956c8b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186502 Malicious code in decoherence-fetch-wezen-enif (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b1b0435545152b75f4c01e16249ba939d98661962b8cb6230d3971ee63181e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187629 Malicious code in json-superagent-helios-ablation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 900574b26fd4ba0c7e2520afb21ebd17480042fc0deb1268745bab58e58e77bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185604 Malicious code in astrometry-passport-less-filament (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c137c4ef5872efdadb22fcb81eff579f9b3d68099ea3d74d52eb029fe7d10edd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...