MAL-2025-190116 Malicious code in ursa-readable-astrophysics-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc80f1b9c5c521714bd2e80e2a6b16e345cc954db76ce53bf0af5041f30f670b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188810 Malicious code in prettier-stylelint-astrobiology-loopback-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6defb2c5feb096989f260b8521f3669e9671736f838b9e562297550bbb18bb7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189482 Malicious code in short-public-permission-grid-throw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99cebd8516a3b996a17b13a2a6d99d754157b97ff1c4d86de13c01ebfafb4356 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in string-deneb-string-spectroscopy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 863eb46575a339449bfa620cbed48728a4a0680a0b638d8ef0292cd6d43e3f65 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186686 Malicious code in eigenstate-electron-lithosphere-dagda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4419ee7a3321834a9fe9daaccbc01f465940828b5b1ffbf986135d57c87ec87f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185753 Malicious code in baryon-helmet-apollo-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e509619c8cda9fd9f1db9cb20bb317bddf00e771bcc44d0c746b082e3da2e4b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189292 Malicious code in run-script-sagitta-pulsar-alphard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 301093ba1f19945b67f4a51c33b12c18edddc6ceb26f3c8bcb80daa80505b50e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187438 Malicious code in import-proxy-cron-balance-abstract (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fc1ec58f88db65ef37f453763c2850aa34c61344a704725c6db3c7fc21bea4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188252 Malicious code in neutronstar-native-dynamo-hydra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64eb5f6281da92ca0de400672e8514b5e7e91819e20cb09e2904422be675fea2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186278 Malicious code in config-ophiuchus-levels-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d00e2b33ecfe6efa1b745f3dc70eb10dfaf23b6cf9dd3ef2b8fa29f57ea8fd01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in flights-ilutag-zilsdsdfsgauma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fee722dd2c06d347a898820ddf689bc23d19751e208ebd9c6e5f8422242ccc9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in imodiov-omfi-cafacevavisvoetfamolcaa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb6244c9d2399860ffc5fa928924c720227f86b0ed1b3767c08dc7255a23eb42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184289 Malicious code in modiov-kian-avumangaffgaiab (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55eabf97fdd3aac34f4386a4aa6fab4454e8f2c305a9be82c3a3702e5a464936 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in manu-oib-givakisasuisois (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dba70864138c80b55f95dbc4cbdffa6951c1a6fbcc87745bbac17f0c1b63177d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-183686 Malicious code in manu-oi-gisigo1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 096ae7b62a3151b4d96aebd464186069c4f959d3ee5eefd14f8bd1373f7a7982 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-183529 Malicious code in loibac-ubg-tuagauaigga (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b5b811f532af5551f80924202cc7559f95729e82e86a55694fcb70cc10fec96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in masolv-avilo-civbuaofoiv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a931196ae9d34edc8fcbf02f3f2a81231debfcacc4ec15099a04258de316db3c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185237 Malicious code in soniec-kat-icfad (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c53a1a9ca9169b38fbc0e3e0a1b8f201c786a7644895e9c2f35cb2f0689fbe7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-182848 Malicious code in itale-adci-ggpanekyu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87b0bb3e75b240082accea45fa79ee046de1da323c0c72726f296b8646669449 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-181512 Malicious code in kopi2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 244f0211d1c0171e18335597cb2db6e3620737d134d9c4588c27a77343d4f645 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...