MAL-2025-188815 Malicious code in primatology-callback-dactyl-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90f7d4a05dd49dfca9278f8e504ce9be45319027a94f09b75557948e02d016b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188002 Malicious code in metabolomics-cross-env-antares-run-script (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 416c9d07d4bfcbc0f380096b82f6ae758880a86c41a1d9264e1b732e0772a9d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186918 Malicious code in exosphere-scripts-halley-upgrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7aea4bb42453a2cc632f90552563951342c8c491a64f789d794a788c96d1b107 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186332 Malicious code in cosmiconfig-xml-rehype-webpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c337d51a5afe782ff83bde8f55685686a71e8d4b23d52af00c64f247b76db8e7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186275 Malicious code in config-darkenergy-heliophysics-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b3f2a08be0835c663a99803c2a7fa6298b462438acf40f200e42fac09cc218c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187551 Malicious code in isostasy-loopback-docusaurus-inflation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 797720d1b8288c7e2626da0beb9bf3b04fce2db05038749d1edb8dae27d74f6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188676 Malicious code in phoebe-sagitta-cosmiconfig-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ef0e13ea76237699131190626c9abb30663026fbd8636c42b98e42d5707324a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185481 Malicious code in antimatter-celeste-meissa-cryptography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d037036ebf23d884cfa774f83f05be5e6f54db51f57b71abb7497b085259edab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189883 Malicious code in test-janus-eslint-config-materialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec79023492b97711616187adb7b16741d7d4baf291a1de140a8c20060aa9f434 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190082 Malicious code in upgrade-async-forever-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75caed0ce1fb98070ff3b33974aacb7b1939cc7108213d2042323c1aa276575d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189923 Malicious code in throw-analyze-cat-finally-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e41425f8df19c5975972c368e0ede064882c1221ada3df40871b15f703b3667 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190477 Malicious code in zeta-beta-secure-secure-load (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d93a5c435de2671bef333672da04229cac813381b0a6af0485bceb971f387c84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189620 Malicious code in speleology-phenomic-nova-resonance (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0964688b47d97de3d008dd858b6c40cbbefa462b69aed624467438e4722a340c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187933 Malicious code in markdown-pdf-jsonp-brane-cross-env (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f0417489b7dc888c7fc76f992a2402c4898362ade16a1783e26a8ac2de36a5a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190369 Malicious code in xenon-comet-xo-quantum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 052d305986eaac09c0a7186bb66c0d5c0c3ab65f1a3b1b59a8649f2412ade857 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186866 Malicious code in europa-augmentedreality-redgiant-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e016ee1a0dd17c2e68725b2ba976f4a101ae5c9a4b06daee9cc37a2f540c5009 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189035 Malicious code in quasarjet-cluster-ionosphere-eslint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0335cb0d12622e1f9f0076cdcad521feb0e990280876f4d6ac17052fb3f76185 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187729 Malicious code in leda-command-aquarius-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54b97a5b24e9f1c261d1603afc2a38bfe2203106a11ea4b09ee3b7341b64025b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187298 Malicious code in hawkingradiation-volcanology-npm-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae30186c272ce2ebecaa6dab45b7ac36c848a48135232810939cf76480942ea4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187699 Malicious code in koa-eslint-plugin-corvus-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9921124b23b8c3333632e1a5ad8852823bbc42e2f37bc4ab4272265763d84cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...