MAL-2025-186108 Malicious code in changelog-borealis-resolvers-resonance (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b416fdfbee04efb784faadebdebb2f83d584927c66aae9b5f0c1ccc972efd83 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190445 Malicious code in zenith-cladistics-plutology-luna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05e4a78984349e9b233c2b9c6774a1bdaf97c0dab19c4ef6f0adec068f2c6150 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190233 Malicious code in wasat-foundation-webdriverio-eslint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector efd9a86d6be17cbc44f9dae6883bbba2e3a38738aaf80a503bc35aa86bebe5a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188551 Malicious code in panspermia-zenobia-cryonics-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1d62b4d8f6f507350616a579cdbce18a90c525a7b7c57f5777d99ae7a748c40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190319 Malicious code in whitedwarf-meissa-standard-mira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12016985bcfbeb9b567e3b4dd9080f0f3918ebd691305456490eff90d30c35ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188921 Malicious code in proxima-thermosphere-weywot-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2244dab451a96c625aa78d793fcb3ba1931ffe5080498587c46c6bbf7f5a3d62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186925 Malicious code in export-zero-orchestrate-zero-compile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5af09b797e4f7aae7c05dba3d89244c143d4393bfb4489b7d6453160dc763868 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185881 Malicious code in boolean-zeta-fire-omega-lambda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2cb7f8a6641e0545bddde60dbe3e670dbd50d4ad1135e2b340018411b59be59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186645 Malicious code in duplex-eslint-plugin-apex-taphonomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2235332a5fb41e922702c24cc78cadd2f0764b74cdef1022c5fb1baebeda86a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187935 Malicious code in markdown-prettier-frontend-avior (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 659e8b9f5234bf3784b1ddbfde8f82519b786322f78a3a6131c158daba967810 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188381 Malicious code in oberon-mdx-hydrogeology-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03f7ec2bd6822ff1708b0250bb0c57bd1da996bc00fe5b964037082fc9942ea0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190024 Malicious code in uglify-js-gatsby-mocha-titan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35678a78049826e95243c5ef05b567ec7a727ae22384d50851840ccd22a90cf5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190013 Malicious code in try-stub-yaml-query-awk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64d7afc6d4f0fe68228645490da6a101c05503ade1edbaa923ccc4560f7632b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188506 Malicious code in paleoclimatology-cosmogenic-crust-kardashevscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00e15ddb8489db7af6fbf7562f37b8fc6a58192ece39405003e76501af3efbeb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in taurus-mutation-izar-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c256602c1f7c8b93be5ed695597c57a40839d4299f5b8b8cbe4a4f17d74ed56c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lithosphere-geodynamo-mui-robotics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c10ad1c51b342754b3c72b5ab819bf08c026d3d4c5c7ec336dbbd9e69f047888 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in weywot-phoenix-betelgeuse-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e4bc442d8873cd68c56fe61c66df8a408f502757c0c8ddb89374f722f785995 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in module-serialize-fire-bash-mu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a46ef2a5eeea574812f8195f6276a061db7134416045f32a5444ac99d064d53 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in achernar-zenith-ultra-joviology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b10086bc1fa64586a64925f5ec4a2a3c346bd5e465318b0be544bd740ae44344 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in chalk-interferometry-telesto-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04a02471fea4f80ed0b903454c83af16d69d52baacd41a34b3477026c957a429 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...