MAL-2025-188013 Malicious code in meteor-bionics-schema-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de16c695f4b26dcedf1f8fe7b76d18b9c5022baaddaf23ddd0024dd05f8917ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189227 Malicious code in reveal-md-process-ichnology-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b3d88f3b3bcf3f3b98fe360b6e28a6e51a6c3eece1e447e88f1decbd0867a72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187729 Malicious code in leda-command-aquarius-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54b97a5b24e9f1c261d1603afc2a38bfe2203106a11ea4b09ee3b7341b64025b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189452 Malicious code in serialize-final-beta-deserialize-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08bba06b449243111553ecbf6df8c3d97715228b596350a22e37f1b8ef6deff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187384 Malicious code in hugo-mini-css-extract-plugin-ophiuchus-convict (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ab15840c7162a1c78bb10f8ff332b175c7f6472daf912e63eb81d372dc63e1b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188835 Malicious code in process-loopback-cosmos-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da04f28b11aeb888365841b60d588c34ef88e6c040b684fd9971c7131569f620 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189035 Malicious code in quasarjet-cluster-ionosphere-eslint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0335cb0d12622e1f9f0076cdcad521feb0e990280876f4d6ac17052fb3f76185 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186886 Malicious code in exec-dactyl-halley-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71d5efdab59b297ba7336cb8f8db4a67041c6a6b122bcb9ded3d7e05cf0aef25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190477 Malicious code in zeta-beta-secure-secure-load (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d93a5c435de2671bef333672da04229cac813381b0a6af0485bceb971f387c84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185563 Malicious code in ariel-virgo-husky-pino (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ef531ac98ebdc581568a34a60826b1733fd289987d4b27691c292b8bacf3e89 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187381 Malicious code in html-webpack-plugin-zenobia-nebula-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bda7c207337434698205e1a554e373872174bfe0253efa98b12e47eb140c345e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189402 Malicious code in sed-route-encrypt-refactor-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aed1135d1e30d5da6abef9427602d2d9b7c72558bdce98188e17f068674d637c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186302 Malicious code in convict-writable-webpack-cosmogenic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d97564ab9fc4db43f4230b9d93ccc412d62ff1b73b25e6ee7eeca8c3f4298df7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190369 Malicious code in xenon-comet-xo-quantum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 052d305986eaac09c0a7186bb66c0d5c0c3ab65f1a3b1b59a8649f2412ade857 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187628 Malicious code in json-stream-aquarius-cygnus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66572cd8192992ce672eff5d89b4844980b864c0c831f139d85634cab429b063 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in winston-process-fetch-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f32310e6d14f06422f625862322cf64c1e6a08c795148c10b8a5c50e384c2f17 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in throw-async-object-public-integer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10aa1d7a7d6befddd3451e86b4c9d3ff5167678967dcb13fa5be0d980ffd643a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pipe-astrophysics-astroinformatics-callisto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6c1a63f8bc23f63c7f34c6526b949675e4cff34dd203b22a467e3952555220b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nova-singularitarianism-warp-redshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c0803ecf0fa0167d661a7e276211b0421fb37f0f5a88da29890880d932bd520 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in higgs-commitizen-aether-archaeogenetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61b8f29b5584b26dd967953bdc8592ed22336590dbf5289d208e0883e9cb3e51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...