MAL-2025-188650 Malicious code in phenomic-avior-greatfilter-boson (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b201e815b3fed6dff5cf2c8c8dd8e975795b4c086f7ae845825da2bd13da55a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190442 Malicious code in yonder-webdriverio-lynx-blackhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfbb715d4acf64ade15a47fd3c5a01c86a6a1ba2777dc7bb8b003d084a247a51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185679 Malicious code in authorize-route-signal-grid-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6420ec20f08fe9014278da249056c739b4f40d5559cc32d48f639433ed2f1ae8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185551 Malicious code in arcturus-venus-loop-cressida (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96ed06828532b121a84a1185a79336c108250ef8e69551667cb9ac3227c6fab1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186624 Malicious code in dotenv-safe-parsec-soap-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e893f8ea331585741d2e799fca6e6967bc3995df4fbfe523ae985a21231bd8c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186842 Malicious code in eslint-plugin-eslint-sails-membrane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d9c8ddb23f24da56881beee4ee5fa6011c178ea702b512177758630c0ecfceb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190169 Malicious code in virtualreality-paleoecology-nova-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8dc1df744f380e841ffc7b91019014063c1c82e664243d3afeaf54a02bf69c5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tool-tailwindcss-cosmology-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 024cbd055f4aa386cbd24118ce725f651db3fc425f37acf6453c7e535d8d1d1a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185756 Malicious code in baryon-sublimation-apollo-shelljs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb3790c726df7c55127d84310d6173ff9fed277cd8b991cb51403c52e43c5f97 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185589 Malicious code in astrobiology-brane-cosmicsilence-superflare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d71b6b4fd8ed016d865ecd9f0470d10e9a4a33aa1bea3e56dab915fe159f08a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187125 Malicious code in gatsby-upgrade-aldebaran-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73c001ab99214b4662862b263eac30593a78748adb121c5de870d37a660239fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185531 Malicious code in archaeometry-accretion-avior-panspermia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75cacb75c83f3d611e28110f6eecd72ad718397db46669eab7ed2b3d26a8e33c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189608 Malicious code in spectron-grunt-auth-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6cbd342d4b73f3ab91a46f07b5ec0f8fb7ea8893422949f32cb9b9cae1c1dc1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190018 Malicious code in typeorm-postcss-process-biomimicry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c294fc466452d2820a486df7e32926bbee267587784977a5dcfde6218f0c0289 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189801 Malicious code in tachyon-vortex-bellatrix-csv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec5822972fbd20e17b527df3dc5f1fc0d18bc0328f474e68ac68715f30e9fca2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188594 Malicious code in pegasus-filament-meteor-impulse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4aa9a3400f1241a8a8b6722778c946764f66a673ba27b0e9c822be836a418815 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189226 Malicious code in reveal-md-neptune-run-script-ignite (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00fcd1101de073cac991c10c78813d879b79b93bdcc3ec039b3cdbaa3c9e2300 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189061 Malicious code in radioastronomy-augmentedreality-library-style-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46c96efc804064fee0f10bf6dcc3c961bd9e06f3fb6c814fc03ffc08e9d1c194 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188989 Malicious code in pyxis-enif-wasat-borealis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6360d976d2a538b3cac4e6a6de90d4745ca11d9890d84db004a268b40fd52e11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186821 Malicious code in eris-umbra-dotenv-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dbf7714f75abefdecf0f36cce8d8391b67049c271697d541efac035b1b66ae5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...