MAL-2025-187430 Malicious code in ignite-rehype-xo-cypress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4a51f0740e1612c51322e453536c8292d2bc79861076bc5c2b152821856564f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187923 Malicious code in markdown-cz-conventional-changelog-link-proxima (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d527ebc303693c9f8e63921a2d125b088cde974feddcfa14b468151078a98007 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188634 Malicious code in perseus-tectonophysics-iota-xenobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1657f0e5dbccaae1e34f55c0c23f8d33d107b19aefd6281a229da5a52a944ac3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190105 Malicious code in ursa-eslint-config-draco-kronos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e217945f165a1f3c90399d422a9537e095a863757767e01869c147571bd5687e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188464 Malicious code in orbit-css-minimizer-webpack-plugin-paleontology-centaurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab7f5cc9d01824907a5d44dc771cb5aac82e0c1a99d9446c42589fadfa59dad2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188633 Malicious code in perseus-subscription-quito-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5366b5b7b684a3e273fd85e0ab2aaaf8b1272bc3ab21fb5c112c75452dccd5a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188938 Malicious code in public-gacrux-jsonp-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7177770d01679691e54cf89dd9dd30351bb2201f3cc0b6e84da2a7becc65a3a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189755 Malicious code in superflare-on-nestjs-xanthus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4bc374df6bcd185907d9484f3b7435d95ad6326a7b1eba24209d2443c9e3479 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189806 Malicious code in taphonomy-phoebe-castor-terraforming (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46873e7112369098bff8350a1440a504a2cfa26a709a48971ac7beebbb5bdb2f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189084 Malicious code in rate-limiter-fork-command-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8de1f20d686d73ab00b93d7d050066e33427b1fe2051dc19a4ef17226e48fd4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189379 Malicious code in scorpius-elara-membrane-brane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb39ffa44da48ee1378a4026bab1577b895a9547b6f4fd79847539f08e9ed685 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186495 Malicious code in debug-char-code-double-encode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf04c663a92261e5204471a60b4f4195cd06203bbc747e721e88d638e35efbb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190274 Malicious code in webdriver-mocha-nightwatch-cosmiconfig-despina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de3cfc3b8c341c20b4e8af0757b87d8eb021f0af5c7c338267d8024659a8cd03 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185371 Malicious code in acamar-comet-flare-robotics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df4fa443fc219b32a649b7258c7128b38d90c7010b81b9625f2459c8b43d2a4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188165 Malicious code in mysql-spectron-webdriver-primatology-eslint-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9acd5009432500e94d681e420e8609ed75797139abe3257f3de9937f8018298 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186594 Malicious code in docusaurus-hugo-uglify-js-dione (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 531ed5c2326f78b5814abec79ccbc151334e3adf59676041d2a923ed645d6d1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187533 Malicious code in iota-bash-bundle-delta-encrypt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f5937b4ff7dc4e858440a4d4659b214c5e00b7067034ed3aa76192d44a402eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187640 Malicious code in jupiter-aether-markdown-pdf-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3047528b04a36dcb7ded333eafd8a31b11d90bc1926d32a82ccd3036dbbf7120 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187990 Malicious code in mesosphere-jupiter-sirius-spinner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9644d9c205b35461491024d83d86512d91f81d021787e7443dcc5b68ff0c4ede This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186856 Malicious code in eta-refactor-execute-float-load (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 125c0784edb26ed9465dc8f0823e5ba03e9837a8cdc6f261ca03fecc79fa65c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...