MAL-2025-189415 Malicious code in sedna-nova-readable-levels (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 519472d81a3bae325559686848d27604cacef6d3088adabf65c3453988faa0cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in optimize-pipe-signal-dog-index (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 973ce0a16ad8d5c1f09490cb1dedb8466884a064e94f7f49ef23438767ebc54f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189433 Malicious code in selenium-troposphere-nebula-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b95472989f84ff62f81f6c99b113fbaf6da8a185c95d54c9630b37770ad223cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187881 Malicious code in luna-xanadu-aquarius-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbc41d7b808faaf60c42dff26f6f47331e3bd6a23a51389d3ae2a88c7c0f9c7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189882 Malicious code in test-fork-gravity-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2cd155e14b0f3d8707048a509a44689422afdacf2b452915a05a5894bcc2dbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186360 Malicious code in cosmos-framework-gacrux-pm2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cd2a9d5b7263324033c43fd921ffc4f87609c2d056fd9ab0813eb4da595dcfd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187162 Malicious code in geodynamo-draco-cache-thermochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector faf8bc17f4419109058b137dbb7f9cfea702b6352c942c830cee9294fde9f0f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188937 Malicious code in public-final-iota-upsilon-array (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df5b112f5906a2a0cd00f09c3c6173c301de7c42a79c707edaf7e7b5470c38d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186494 Malicious code in debug-cache-report-cache-index (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 548a5857bd7c92380811c367a8bd3c184e43d7536080c389e556fed63330059f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in abiogenesis-cluster-astrophysics-epigenetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9bd2cb71328f444629e5bce6d0a3a04d39aa960d282b7c896279f7cd4cf3c250 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186099 Malicious code in chalk-paleoclimatology-dependencies-parsec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a603788e55451e61a0dc7013d27051b497a7a2c3d8bf05f6086ffe0db7090038 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186203 Malicious code in colors-eventhoriz-react-bootstrap-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa0400d978fa965e52d12202d981d0a00f84aed877346a6ddbd17443b12575da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185654 Malicious code in aurora-fusion-perseus-pm2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aefa16c4e0a39d7da9fad605574203f510e4e8f3a569549abe21bf15b3621ddd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in astroinformatics-brane-firebase-socketio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90e22d20f7c69d4877b52fb6e6fbb3e952ddd07144b793d3cccb6685f2fe596d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186471 Malicious code in dagda-non-blocking-html-webpack-plugin-astrophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8c96a0cb89808b6a9d97752e052ed1ed344076a7cfc56315ad0186b572be54f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186337 Malicious code in cosmicray-nova-regulus-eleventy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 629a39b0a9e899a2c00667e031e0aa1a1416eb7626b9123e8f696be447ca89b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187840 Malicious code in local-lyra-cli-rimraf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3d2ccdb241affe9f7c727dc834b0d859c9f62002f7ded63cd52e753247ab990 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185526 Malicious code in archaeogenetics-semantic-ui-weywot-gravity (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd2d85b60fccb5653a1ef6424b8a8559da59eac331213af2d61e5276efefbec3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190216 Malicious code in warn-sigma-cat-interpret-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83828718c251c07d67282f2fbd4eb70e1a5f11a3c108aebc3884dd274c09f372 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187605 Malicious code in jekyll-resolvers-quark-xenobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34bfb629499da5c9e01ccc9365672ad6e8c74fb46d6ef77e41e64360a8d779ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...