MAL-2025-186036 Malicious code in catch-bash-string-long-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b18aceb03e40b3bd501d752301e1b8db422f9568a508eb687cc8e7084d23656e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187007 Malicious code in fomalhaut-restart-loglevel-forever (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2249aa4fd99b1a153ecd1845d37c0b92b17c3447a01493b2f5ef0609f04c1196 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187568 Malicious code in janus-chai-umbriel-install (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eae71d4b4bac5709c08900c6dbd46fad9585278dc80a7127a29f8304f29d18d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190467 Malicious code in zephyr-mongodb-wavefunction-pm2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb6455e842bfed2e45795b6fa4955bfa999151b2b9d2cf8678f31179f7a042f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189182 Malicious code in report-new-runtime-sun-user (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f170b68394d1a1d0fbcaf0ab60fa7ed7b0e077c63d9823cf2922b7bca42d9aa3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189402 Malicious code in sed-route-encrypt-refactor-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aed1135d1e30d5da6abef9427602d2d9b7c72558bdce98188e17f068674d637c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190431 Malicious code in yildun-blitz-miranda-accretion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9aa6adbd171001d6774e9c0faf6981e1b8230bc776079be2918fc0071a823fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185836 Malicious code in biotechnology-apollo-rollup-plugin-nodemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0830b98c58ab354f9147b7c6003d2a35dd551ebee55353545da36da720098ba1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186330 Malicious code in cosmiconfig-gatsby-janus-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d569a94adf638e19a24f0f06a1a6a865fbf7a01e48a5109520fe71f210a2307f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187252 Malicious code in gulp-kinetic-mongodb-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7878006d6f8f7caa40ce0daf78b2c246cba2cc4a065213449dfa1b7d77e316f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188056 Malicious code in mira-apex-lint-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c6ef9b3af85b23ae480e1b74e397be16eca2e4c1a02bd4bc8da7f5925457757 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187291 Malicious code in hawkingradiation-eslint-mantle-lyra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88a5de4831c38f6c1d0de9165d7959c9e431a8a052cf7743cf669170730ae39b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188216 Malicious code in neptune-europa-version-thermochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8bda02da4b17be35dae8af31f33e45190975dc5b800247dd179363537abfee5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187263 Malicious code in halley-antares-lint-staged-protractor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08f510611717755cfc51a3e5909c156ddd315996f9da4c82cf4c9eb2a674cc57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185951 Malicious code in bunyan-resonance-mensa-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a65863ee55838a0a6002f037f8899a14e638e0c1328dce784f74dfa7763be464 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186198 Malicious code in cold-dog-module-notify-good (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4c83bd10b2435c6dbd483122fd890dd154abcfcc705f21736d501c33135c704 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185700 Malicious code in await-supercluster-prosthetics-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1842ca75811b8fd24abb3a9ba059135d9f54a7ad3dc352315b58c3ff798aa88d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189741 Malicious code in superagent-planckscale-prettier-transform (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fca005387f6cae31e007b8f9b1d5e146cfcca77b5b5758630e77c134eed57fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187140 Malicious code in gemini-ionosphere-superposition-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d9915da48474b9a7fc365caff832585a7c79e69a676a479e6add1449dbf3314 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185718 Malicious code in babel-baryon-magellan-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af8f1ba8a4b8c04c7a54ec5e6ee11756fffea3a57f5d01c02e9f40fac06da6f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...