MAL-2025-188301 Malicious code in node-awk-resolve-dog-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb1468df818feeb3957cd3d617fb7772a20f5a04b3a5b7508a13d5e6f0396452 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186036 Malicious code in catch-bash-string-long-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b18aceb03e40b3bd501d752301e1b8db422f9568a508eb687cc8e7084d23656e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188056 Malicious code in mira-apex-lint-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c6ef9b3af85b23ae480e1b74e397be16eca2e4c1a02bd4bc8da7f5925457757 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188161 Malicious code in mysql-heka-version-saturnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2111a15423e5ec2213bc83b5a7ef30ec0580c5fba728b2b7a7a02b828883b69b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185481 Malicious code in antimatter-celeste-meissa-cryptography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d037036ebf23d884cfa774f83f05be5e6f54db51f57b71abb7497b085259edab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186873 Malicious code in europa-ursa-tectonophysics-steganography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ddd3742b1eac53007ed3bb12abe1f223c0ce4cb091ba778c9caa9c9349ec244 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cordelia-dione-hyperion-superposition (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ff2b4d8c5947605df328faf7264d7223be4e7379aefc037d05f19521e539967 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186738 Malicious code in enceladus-sirius-radioastronomy-octans (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24f57bc69c731ec02e2811fda830912031459311f70ab51b01296169cfd7a5c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188218 Malicious code in neptune-ganymede-thermochronology-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed4e9551588f4666d68b5184e2a3093928f49745bb6e66a6690de97e4ac938ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188543 Malicious code in palynology-singularity-multiverse-writable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ddf181405e98b25615c7f5560a96bf0c66c7f8b1fbac3fc96c374237655bfcd1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187381 Malicious code in html-webpack-plugin-zenobia-nebula-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bda7c207337434698205e1a554e373872174bfe0253efa98b12e47eb140c345e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187308 Malicious code in heka-puppeteer-phoebe-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 274b0153c42d4b1db33abc0d693e2dff67d8ffbd4ac59765727dbf9d7991c87c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188248 Malicious code in neutronstar-bootstrap-nodejs-paleomagnetism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1485cd468c12725160c4f7c52c2420c78dc535b92bfbb49bcba56bb7a7952f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in xml-sigma-meta-daemon-delta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9814f634f331ea15ee456dadfc2e7f1468d32fd0e4eb9ef64568b3b1466cec6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in update-barnard-rigel-readable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b80c2b2d41189c75ea3088452d80ac7c923a98a02010f14f29fc8329cd007b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cassini-pyxis-proxima-isostasy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ee145f91f029367c40892d60c12537ef872ce0c03862342747ec9269427cfb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miranda-exec-meissa-terser (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6aa4ae84ddda5465733272a077d844865623f79611a78353acab0d23bf825bb7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in supercluster-entanglement-firebase-multiverse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8aec89289aeb2a352ab42fd6e356c59312966fd6c9104b331eefb6c970f7fc32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in callisto-enif-cryonics-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f1cb08800e2395ac2ce2014130ec27002e68fd1d04853aac2157234a70f9542 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pegasus-scripts-antd-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 148f133e1fcaf9e6b0f51a92e0b77ef41f1bdf6ed12f5efd4ca90fe15c72a9b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...