MAL-2025-186494 Malicious code in debug-cache-report-cache-index (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 548a5857bd7c92380811c367a8bd3c184e43d7536080c389e556fed63330059f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185550 Malicious code in arcturus-sails-version-atlas (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13d76c3c54e9f426ddd2ebcc682016032c5763ca053724a6c3a88846657649c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190229 Malicious code in wasat-bioinformatics-leda-bionics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 192934a7bd925fa500567877d6a6fd5bd374d487883343d85cf3d39fcca490a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189215 Malicious code in rest-paleomagnetism-eris-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e0bc402668138cfaf7a98c94602606b2e89444223aeb567e96a42bef52c285b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189246 Malicious code in rimraf-middleware-mysql-pavo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ef86514c1699fce4dff66864f70182aa42254817e8fe3bb9925c667d7d3732e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186541 Malicious code in dendrochronology-pm2-chromedriver-orogeny (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87475fe3d358aa6c921d2001533db20b1270f65e34ccabe2e8b3f381d6cdbcc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187307 Malicious code in heka-neptune-nightwatch-andromeda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d84dc40b71697f2fdd325952b027c262ffc610bc4981dd870c48b15e3491471e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186471 Malicious code in dagda-non-blocking-html-webpack-plugin-astrophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8c96a0cb89808b6a9d97752e052ed1ed344076a7cfc56315ad0186b572be54f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189053 Malicious code in radiant-cross-env-neutrino-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aadfcd3521c85f083a4e6d18c4f8c6278368aff470db93bea8a5a10d451720be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190332 Malicious code in winston-html-webpack-plugin-hologram-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a9afe8f4ab2829ba5b5196f1795f383340927d445f5df8c4dafeb0d41be9b8f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189966 Malicious code in transform-galaxy-writable-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38258b4baa1561b71fdae66ddb0bd2ac471ea1659801128433146ac90ecd09b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188937 Malicious code in public-final-iota-upsilon-array (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df5b112f5906a2a0cd00f09c3c6173c301de7c42a79c707edaf7e7b5470c38d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187605 Malicious code in jekyll-resolvers-quark-xenobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34bfb629499da5c9e01ccc9365672ad6e8c74fb46d6ef77e41e64360a8d779ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186337 Malicious code in cosmicray-nova-regulus-eleventy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 629a39b0a9e899a2c00667e031e0aa1a1416eb7626b9123e8f696be447ca89b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190422 Malicious code in yaml-cache-sails-jwt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af495e448a44b27ba05a7124ae72a767dbc8c0ee4b614c3f1fe4155da6a49a1e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nightwatch-global-subduction-eslint-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6db5dca0a960c4affb7ee077ac8b2613cfe86d64f6224a89a259c25d733fcdf0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in optimize-pipe-signal-dog-index (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 973ce0a16ad8d5c1f09490cb1dedb8466884a064e94f7f49ef23438767ebc54f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186203 Malicious code in colors-eventhoriz-react-bootstrap-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa0400d978fa965e52d12202d981d0a00f84aed877346a6ddbd17443b12575da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in abiogenesis-cluster-astrophysics-epigenetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9bd2cb71328f444629e5bce6d0a3a04d39aa960d282b7c896279f7cd4cf3c250 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187162 Malicious code in geodynamo-draco-cache-thermochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector faf8bc17f4419109058b137dbb7f9cfea702b6352c942c830cee9294fde9f0f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...