MAL-2025-188026 Malicious code in meteor-jupiter-jupiter-xanthus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46c15bb4dde7cb205f506deb37c235142955b3906d8918fa352ab7add70e6e9f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188402 Malicious code in odin-start-sagitta-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 878a783e1486851d45d02168357d90a0294a77ebd4be938cad78d29133fa59d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187775 Malicious code in library-biosignature-bionics-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c195849028cdb53692f81b71f60bedc1c41ab1cbecd2d1f708262bccd1f04c34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189330 Malicious code in sails-link-update-glaciology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c565b4c6d9dd5485fafd3fce71a661cbee1ead7dd64f7bb8d20006fbbcbc76e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185754 Malicious code in baryon-ini-biomimicry-entanglement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd3513dd31103848bc094a4a190c5ad0a85ff4cb3dc49d6174a5d5e91512ba98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186541 Malicious code in dendrochronology-pm2-chromedriver-orogeny (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87475fe3d358aa6c921d2001533db20b1270f65e34ccabe2e8b3f381d6cdbcc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186421 Malicious code in css-minimizer-webpack-plugin-hermes-spectron-pavo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d8dd2b1b22f82ca3c1eb2d83c301404fb836de51f9c33128031bf6be4145a22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189505 Malicious code in singularitarianism-interferometry-cryovolcano-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b1a008cdf498b4338faa36f959e2f1eccbd04ff0bb18ac3f35f4dfe01a15e25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190332 Malicious code in winston-html-webpack-plugin-hologram-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a9afe8f4ab2829ba5b5196f1795f383340927d445f5df8c4dafeb0d41be9b8f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190229 Malicious code in wasat-bioinformatics-leda-bionics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 192934a7bd925fa500567877d6a6fd5bd374d487883343d85cf3d39fcca490a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188749 Malicious code in plutology-ariel-subscription-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7586875995a9248c1bb0d69061389e43a86bfb28b5f8a11e6aef21281d3ed47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190422 Malicious code in yaml-cache-sails-jwt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af495e448a44b27ba05a7124ae72a767dbc8c0ee4b614c3f1fe4155da6a49a1e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189215 Malicious code in rest-paleomagnetism-eris-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e0bc402668138cfaf7a98c94602606b2e89444223aeb567e96a42bef52c285b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185478 Malicious code in antd-node-sass-zenobia-eris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1a6abf162f2ff33e0e531ac0bacacc886441b2faaf429aec9919956afcd7939 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188178 Malicious code in native-electron-builder-nashira-tachyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2c326aa33890289362406cb0f22eec8401d0b31d237121e8667b24eaa89de69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190272 Malicious code in webdriver-mocha-ionosphere-commitlint-inflation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0fb8e42f1fc95776d13ca526818a5b0d2df5f8ab9b2ffb5042f1ef9273fc63ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189246 Malicious code in rimraf-middleware-mysql-pavo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ef86514c1699fce4dff66864f70182aa42254817e8fe3bb9925c667d7d3732e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189053 Malicious code in radiant-cross-env-neutrino-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aadfcd3521c85f083a4e6d18c4f8c6278368aff470db93bea8a5a10d451720be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190214 Malicious code in warn-pi-visualize-catch-slow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd19017ae32cc4971e46154fbd9e20fc1d6dd2eb27e09eefcee04c2372bf184 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189228 Malicious code in reveal-md-sirius-sequelize-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 968ce933dbdad8b347b9115160eb71c5d39ab52d322b18214ad9c9007cd336e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...