MAL-2025-187284 Malicious code in hash-table-enum-debug-unix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92e9db4a5d7ddd918c7c0ee403554f86845cb7da929c3225fcfa88c84dd5d61a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187389 Malicious code in hugo-wavefunction-dotenv-parse-variables-parallax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ecf14a07cd348f4aef4bf71dd063f333aee890c7b9fffa4af049cac1d997ef9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188751 Malicious code in plutology-cosmicray-fornax-babel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b77624c3e7b1eb6b1cfe6020796522cf5b3b7f389af4d08eb75455d191ead3be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187036 Malicious code in fornax-postgres-phoenix-semantic-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5695ca34ea3d53ba924b7cf3957ca4a9b7c9f3c79a463ba9e5cf2c27dba36ca9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185697 Malicious code in await-mesosphere-meissa-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b34101e61927586d02c2c662fce1eff112c80ee71cd05aecf02621788752976 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187309 Malicious code in heka-relay-grunt-gammarayburst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a34c9f4c51f9fbb8b1a6af7224378de5173d0150c7a5c3399e7e8ddb1e5c9e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188977 Malicious code in pulsar-selenium-oortcloud-dorado (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b9c392f64679172f81a2fc6e79ccf979dfbf3879ed0696eb339f8e1a4219167 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186544 Malicious code in deneb-biosignature-taphonomy-glaciology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 826d1c2ca5b616a8f35e0fd137fffc6f302955dd4f7b5785761a78ec8078fb4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189407 Malicious code in sed-sigma-mock-finally-virtualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f0a41fd08cfcc94af80445f4cbcacf1f1a3025d1f4d341f2ade3f5e5609b5c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185590 Malicious code in astrobiology-flare-repository-cluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 883c270e21889ed0f7b356d9f7ecda33006111d85778289be3c2634ca143571f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188703 Malicious code in pino-pretty-electron-palynology-bootes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b36e22f77ac97013a394fdfb27730769ada345b6bc823b6adaff00ad707efbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189443 Malicious code in sequelize-eris-europa-sails (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3eccbd4b1bb7d5335c4aaa91ebd9e32a321a8447290883e3cbf50f61a29cb747 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187311 Malicious code in heliophysics-aurora-lint-staged-global (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3146d8b6e52b168ae00047b32f06d4bcb6748de549b64b41b2bfb73c6bd4abd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188581 Malicious code in passport-selenium-terser-webpack-plugin-juno (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 602abed684a5ea387f7fc7198fa8757800994812e6e03ff63712b6dbbfb3e1af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in colors-style-loader-bellatrix-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 547d8fda9a648ebadbfa1ec3f1e54327c81673c236c51d0f81f375194dbb596c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188477 Malicious code in orogeny-fermion-mui-jovian (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1bb0406ac1f1bb4b98f3bc29d46c584b70dbc4b846a397cfe88fa1283c87da7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188064 Malicious code in miranda-biotechnology-xanadu-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 252ea35406402f4bad38396317c238088ec6afcbe8e5aa922bda36ae0b271afd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189140 Malicious code in regulus-winston-lepton-webdriver-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8893e4de90f91d41a2331fed671b5ca45bd61ed7e48d99d1ceb457af9b93abf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185937 Malicious code in bulma-titan-axios-ariel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aefa58ff6412b2a7d3639037d582e5057b746e53319c75443b3aeca613e7b575 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189282 Malicious code in root-root-iota-link-error (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c06ae8ea49373121c3d3a2f9115d40afa3584bd4670a4ad02ca8ba801d3c5a55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...