MAL-2025-189801 Malicious code in tachyon-vortex-bellatrix-csv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec5822972fbd20e17b527df3dc5f1fc0d18bc0328f474e68ac68715f30e9fca2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187710 Malicious code in kuiperbelt-nova-parsec-helios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5005685248afcbff87afc6c58f65d21755259f517acd39c3c946f53539dcf6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188458 Malicious code in optimize-theta-process-cluster-dog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb2b3e9d3328a363fb5b4710efab7a9851461ed3577869eae397a170f5d2476d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188822 Malicious code in private-abstract-optimize-view-rain (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bb70db1790bb65e64e2974752452b944ac058868f9967bdcf6799ccfa1ced5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185386 Malicious code in adonis-cosmos-eslint-plugin-izar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f51440d13be3a94db6138efdff6d65f7d866cbf0118a7f11859f4508a808663 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187813 Malicious code in lint-staged-inquirer-transport-hawkingradiation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfbb20d4bd0ecb369e109ab32d36b1f7d0610fb45df7d23e8f9bbf0db5f3c22e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186114 Malicious code in changelog-polaris-dotenv-safe-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c814b7fc8dab99055234c78d4948e54d8ffe37e73c7373184c2033064d60c451 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185355 Malicious code in abiogenesis-cli-tachyon-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3731d79580a9a1a452610b6a842f4635104e983316a54b1cf97ef46f6b025b4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187992 Malicious code in mesosphere-nanotechnology-got-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c51ddaebeed905bd3e4d2efb4932a9094e6dada95ad1d5541fb3cc456209d2d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188497 Malicious code in paleoanthropology-helios-auth-panspermia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e67ea5fb796d68a806e68066027f59e37e6980576eca3fca83fbc833334b5e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187626 Malicious code in json-miranda-karma-auth0 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e21153db14daaf54497f5b3ea3e6b717421a572780efa5d938efdcb121cd30f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187561 Malicious code in jabbah-colors-parsec-chromedriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb186f675de9916b8f536619d22cc0e24c1fc3e1dfb322b2bd221b7054c1bb08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188713 Malicious code in pipe-astrophysics-astroinformatics-callisto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6c1a63f8bc23f63c7f34c6526b949675e4cff34dd203b22a467e3952555220b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188638 Malicious code in perturbation-blaze-singularity-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71d94ee357e591d02062c95c64888251cbd977c18af9279759332c2d7380f162 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187196 Malicious code in google-radiant-weywot-rocket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90c66e0686c4618a725de20e95e6ce1715c68327b6ccc280c359a1139312e4a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185431 Malicious code in alpha-authenticate-serialize-long-try (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 199def465b170141e797244332a927dcb36e3ae277b1a2ef1f33c77fd984bd0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187699 Malicious code in koa-eslint-plugin-corvus-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9921124b23b8c3333632e1a5ad8852823bbc42e2f37bc4ab4272265763d84cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187851 Malicious code in loglevel-meteor-mui-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ca35c471536de6395cd1a455a18886f5a26d7919adfe6f44006c4879d894dfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190373 Malicious code in xenon-prettier-plugin-markdown-csv-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c713706c18d49eb384bd0bbed325910100ac359c57dd42b07ef52f54605e1685 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188921 Malicious code in proxima-thermosphere-weywot-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2244dab451a96c625aa78d793fcb3ba1931ffe5080498587c46c6bbf7f5a3d62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...