MAL-2025-189129 Malicious code in registry-quark-barnard-cross-env (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8be35985da5091690aa56f84416af345aa641a6b98c78446a0a03f371a4176d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186771 Malicious code in envconfig-apollo-dependencies-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc6efee11ebc8382fbece0fc1803392ff0837ae4af2341841d4b417793e252fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186572 Malicious code in development-antares-xerxes-membrane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4362fc9df795b9d7cd12a02041fd8a23c9956574057cd907b59e60ecca9a9ebf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186235 Malicious code in command-pulsar-atlas-on (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72b38ad021b2edab7a1022fa57221eefd500f88a7e7cf7d45dffc7b50ed47d2e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188674 Malicious code in phoebe-petrology-sirius-fermiparadox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f897ff38dbb81fa575193bde8868cfa42159ce1bb70838cfe850d7c349b77de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189641 Malicious code in stack-theta-meta-index-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1540d87914707a278e9777b85d134c2c627f02d165bde85e7f01f8b9dfe3237b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189881 Malicious code in test-cache-rehype-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c6d134b4980b93d8c9ca0986a32a823ed1185745ec35ae4127978f61c7e7324 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in darkenergy-google-paleoanthropology-thuban (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e7840b2d8bc4ea830f6ac0902efab2ed67a3181461cec1cc74a07a7c515f105 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in root-resolve-wind-stub-interface (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76745c37e2effb609da0372dbe196b1268ae5777b04442b99e59f3da1c499739 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189584 Malicious code in solarnebula-browserify-lightyear-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d0114a2c36dc9ade148440482f25df3f599403a605d2438cde49dd242f702b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185729 Malicious code in bad-alert-long-container-mu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d6513c98d72ad1bdbdce3ec34a2d8da4e0b671dfcabae5f29fe5adebfbc0de6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190114 Malicious code in ursa-process-query-metabolomics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d9eb276d7c42a3eb8d32f6a4fd0ec8a87d3a091523a686fbe495218f0f56f05 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188117 Malicious code in mongoose-wolf-deimos-forever (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 278e4a12ef49eb23953dc1bea73ef37ad5b5174a325aaebbabb2faba7c8c204b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186587 Malicious code in dione-kastra-public-react-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94e45af73e65c8bb69b8936ef251a668c188721bb919947f8884f6ae981cf02f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186407 Malicious code in csrf-callisto-hapi-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3353f2b88309fec3f0a2db16bc2c7dacbf46763f6ef7ba45dc6a3742e6ec2f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187163 Malicious code in geodynamo-hydrogeology-ultra-norma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a25646f5279d706c1d9dd687cb55cb85561e38fccda1c0629ad76b46916f95c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185931 Malicious code in build-perseus-repository-asteroid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27053231811897d728e75138a8e6197e848557505ca26f8741717e627d78716b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189962 Malicious code in transform-carpo-charon-hapi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9df721a1d001a47a01827b2556b96ff9d55853def17552c84f1c6e05a3172c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185777 Malicious code in benchmark-refactor-secure-scale-array (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36f42ae67e1ed1256c1209e7b423d44b1685f842ee81b1702990e6a5b8549973 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187965 Malicious code in meissa-avior-singularity-dione (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56058434ea05e4b11404bc54a0e547c0c81bb85ca6ce5d07d2906dfdcad9beb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...