MAL-2025-189664 Malicious code in static-view-warn-cluster-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8959878fc66db7bfa787bb8fb77224a14a0c6f77599a8ba842e95e295d4466b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188157 Malicious code in mutation-telesto-cybernetics-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e93feef1dbf14cc4a7a5a3b3d8135960ead9bd867f10c2706c5411df97417a3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186518 Malicious code in deimos-phoenix-impulse-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbbfcd766b1ca1c62a132b5ea15ea096166acfd3fa7ec76d70d8f3145d6f817a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187588 Malicious code in jasmine-iota-apollo-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abb148d7fe3af5383c5182391ac79de62170ac8d4404462c54639a8bc134a119 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185471 Malicious code in antares-parallax-publish-innercore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e07fec6b828a74f076cb5efeafcef72a2822472cabf3a3ec7922699a1283b9df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188007 Malicious code in metalsmith-ganymede-gravitationalwave-biogeochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd371531b6504d7302f781d1d49aa918cc42e03fda931b017ec70b39844a114a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185539 Malicious code in archaeometry-yaml-phoebe-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 880fcbbb3bbcce9c482ea58ee1f84a2ff2286445d9705d51ab580632d70a051c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185878 Malicious code in boolean-fork-uglify-dog-sanitize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2398286c5bd8b36359dfe96e05f9bd79387f0ed461e40f664b3528ec4bcf92a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186653 Malicious code in dynamo-leda-registry-unuk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c347466e8c07922985807bac40056e427e02532dcf757e70cd0833d2f05383b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185745 Malicious code in balance-public-new-object-nu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e4bc6026cbccdbd46d399f7ad4ad79e78e3f51369f9d5a0619d82b3a0f75f5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188394 Malicious code in octans-yakutsk-dotenv-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d751656f2ac7efe86e47c25583f93d9ae1536daffdceaf849d3483681ba1dcc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189050 Malicious code in quito-fornax-dynamo-csrf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9e424c895ae2c5174fb36eb355139f09e3b04dedf5ca047eeea84746b5602e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188529 Malicious code in paleomagnetism-playwright-blackhole-izar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a3ac923ef3e0b0386e7575fe8798cedb5b699921978d28e61fc8bdbe8f8eaab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186330 Malicious code in cosmiconfig-gatsby-janus-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d569a94adf638e19a24f0f06a1a6a865fbf7a01e48a5109520fe71f210a2307f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190014 Malicious code in typeorm-csv-troposphere-socketio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e73547aa88679589280af7f97832cc643441c415a7b0c69aa00448db76023b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187042 Malicious code in foundation-transport-xenobiology-commitlint-config-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21f58e44a960c10e222f1a01f7545b9fd1ea02dd1bb91d718b511e3e182eeb71 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188239 Malicious code in nestjs-equinox-fomalhaut-mutation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54c0cb4105562e09ca2de2cdc72d2a0eeab9560bb0757df8a660d78b0f9c5759 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186262 Malicious code in compress-async-rho-boolean-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b47a72962d3c729d5d4253ec9d28d30df0480c577add110900f74126b32e3a6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187501 Malicious code in integer-omega-virtualize-star-meta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f17b62eb52e500d6d763bcb97084f1de1bafb8b9176ec2a21c9bf2c0779b280 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186346 Malicious code in cosmochemistry-lacerta-magnetosphere-reveal-md (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08d0d5db9b30a391c486f37cb6ced3a4f296a525efa9c588f34a6a3845fe226e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...