MAL-2025-188131 Malicious code in mu-dog-proxy-decode-unix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88cdfbf38d06291aae96e832f05b29f00cfd35589943f585837dc348ec6b1fce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187252 Malicious code in gulp-kinetic-mongodb-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7878006d6f8f7caa40ce0daf78b2c246cba2cc4a065213449dfa1b7d77e316f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187424 Malicious code in ignite-chai-mira-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ce891d93375fc44ef940ba2e552f0edb96f80dd9d0738d90e22a7a411c2fb82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189229 Malicious code in rho-alpha-phi-cluster-water (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6e7a4ef57dd54f76ac6aa11467b48f4f5cc687a1a46e1934d0b1dff8c2cf4f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189402 Malicious code in sed-route-encrypt-refactor-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aed1135d1e30d5da6abef9427602d2d9b7c72558bdce98188e17f068674d637c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185700 Malicious code in await-supercluster-prosthetics-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1842ca75811b8fd24abb3a9ba059135d9f54a7ad3dc352315b58c3ff798aa88d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185951 Malicious code in bunyan-resonance-mensa-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a65863ee55838a0a6002f037f8899a14e638e0c1328dce784f74dfa7763be464 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190348 Malicious code in xanadu-dotenv-safe-markdownlint-materialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3910fdac95250d53aecadede785513f9beceed180e4330b90a3808d260b82a43 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185869 Malicious code in book-boolean-runtime-grep-root (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 248fd29ebd39c973c6e898d5026a9cbcb91abf2a85b678c558d7b07f266a7c2c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188835 Malicious code in process-loopback-cosmos-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da04f28b11aeb888365841b60d588c34ef88e6c040b684fd9971c7131569f620 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190324 Malicious code in wind-phi-pi-zeta-virtualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d7ec2ba0faecdde08cbfe67ccc207c1a3d89f35b8a87f571b29483b2bee8ed7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188543 Malicious code in palynology-singularity-multiverse-writable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ddf181405e98b25615c7f5560a96bf0c66c7f8b1fbac3fc96c374237655bfcd1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186702 Malicious code in electron-nconf-callisto-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc90748ea64a281a778df79da5f5d78d8439ba2ac5dd54761b15734e56d7aac7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189112 Malicious code in redshift-build-geodynamo-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8eb6dba5456ba6db7b6f8b463cbe02f3929d795d4d1027a1cbc0a88a12d75528 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189073 Malicious code in radiometric-stratigraphy-nodemon-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5346af81619e3b733e226889dc529f61eb53d60b06b5a2830ca2833afd457303 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188301 Malicious code in node-awk-resolve-dog-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb1468df818feeb3957cd3d617fb7772a20f5a04b3a5b7508a13d5e6f0396452 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186910 Malicious code in exoplanetology-command-heka-mensa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c20460cd88ac33a5b0699bef0fdd2e695b306f22592c147b6451eb2336f28ada This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186177 Malicious code in cluster-child-process-remark-hadron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0174842527c29694de08b676a8177ac52e03dab4a1db27c0edc59945ebbb6a8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187381 Malicious code in html-webpack-plugin-zenobia-nebula-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bda7c207337434698205e1a554e373872174bfe0253efa98b12e47eb140c345e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186886 Malicious code in exec-dactyl-halley-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71d5efdab59b297ba7336cb8f8db4a67041c6a6b122bcb9ded3d7e05cf0aef25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...