MAL-2025-188401 Malicious code in odin-nightwatch-singularity-gravity (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d3c3514c74c10761cf5de7d75f8f020b9df8cedac55d8dd56c69d1470045cc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185504 Malicious code in apollo-ini-grunt-radiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c48d74220a2eebde40d0798cba3ab887af5402c7d0e4d32cb8683107a6650af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187104 Malicious code in ganymede-metabolomics-cryptography-metalsmith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6be32f11163bc54d3aeb742db539967f72078db69bd2365ca559d641cc92a721 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185528 Malicious code in archaeogenetics-tardigrade-filament-boson (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9224028552e3b7dfa507b6d9c04414e4fc7c9633163fa4ca6c51bf465fb5ef0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185503 Malicious code in apollo-geochronology-stream-readable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1853cf9a3f20a918e290a6d47a2239df7fb6e98aac8909d1af2210c7b228b0b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190319 Malicious code in whitedwarf-meissa-standard-mira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12016985bcfbeb9b567e3b4dd9080f0f3918ebd691305456490eff90d30c35ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186132 Malicious code in charon-transhumanism-zephyr-electron-builder (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e9cc4151f57f8ba05200f8b1ba05028c6a90c94b8c52f8a531176c4da4af830 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186919 Malicious code in exosphere-troposphere-grus-cluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a938b8d5f2c06771aa4f407892665e96dfd1f65f2a61835af1bc190e090aac6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188239 Malicious code in nestjs-equinox-fomalhaut-mutation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54c0cb4105562e09ca2de2cdc72d2a0eeab9560bb0757df8a660d78b0f9c5759 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186441 Malicious code in cygnus-got-nconf-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf4cc3cb622a13b0cbc50c9a597f40074fffcb794cc7735f6e63a0046d3db721 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185386 Malicious code in adonis-cosmos-eslint-plugin-izar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f51440d13be3a94db6138efdff6d65f7d866cbf0118a7f11859f4508a808663 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188638 Malicious code in perturbation-blaze-singularity-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71d94ee357e591d02062c95c64888251cbd977c18af9279759332c2d7380f162 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190001 Malicious code in triton-radiant-epimetheus-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f37690579c85320317072d9cdc94e1053ebab4d6fe9f33c85656cc0bb9598f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186473 Malicious code in dagda-polaris-entanglement-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5325a6a4cc8abbb32dc79710052d24b808fd1692e4b2370bfa9cf74f61373dc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190233 Malicious code in wasat-foundation-webdriverio-eslint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efd9a86d6be17cbc44f9dae6883bbba2e3a38738aaf80a503bc35aa86bebe5a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188570 Malicious code in parsec-oauth-jsonp-eslint-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e65d8b51f1ca029d90bb2f910e5f3d92bdc1573cc4f996ae4858417ff3dfd2b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187648 Malicious code in jwt-polaris-accretion-transform (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e37b2693cb2d609541e5af2ae1c48dde95387af1a4eebbc1098447fc26eb9ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188960 Malicious code in publish-vuepress-sails-foundation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8174eba67733225bc2a363540d7f5712c22849add86bbb13c447eb8e2266a409 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188226 Malicious code in neptune-redshift-semantic-release-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc439e829e757752b4ff8b2dbe8582cddd0435d867d34393544d740548b33caf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186506 Malicious code in decompress-simple-lambda-container-meta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a56f01a80d1fe9a2a4e14344b3a37f67f649c9c2f15d90b3604f6dc5c138e22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...