MAL-2025-187792 Malicious code in link-leda-odin-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e75ce4b4c89004a0671609cc9894c898727457ffbd1c7baf91492dcab7c4d92d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185548 Malicious code in arcturus-phenomic-glaciology-promise (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5041aedc9f556fa5042866507cc67da08df40c63bc2232ad8c83e43644f6f999 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186646 Malicious code in duplex-init-parcel-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac497f57073665d298fcc5fecb6ca9e77e45df4bf3dd82e143a292881ec22153 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185570 Malicious code in array-simple-water-tau-book (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30cc8225a97aed8f4d662ddf94085f9e9c314a50062c44fc92cd45f49a066f37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187620 Malicious code in joviology-standard-iota-outercore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af8d63a4d4151f2d7abd0d0003f10cd383d8c15f82d151c121367037a69142a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190274 Malicious code in webdriver-mocha-nightwatch-cosmiconfig-despina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de3cfc3b8c341c20b4e8af0757b87d8eb021f0af5c7c338267d8024659a8cd03 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190347 Malicious code in writable-lint-helmet-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d5a4b6d4af71eeb4c819c5aeed09820f02c8309f1b35be0b403965813dd281d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188656 Malicious code in phenomic-metalsmith-neptune-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40a3e947e7e13e33325e88989cd6115c193af7ef059f6904daade611693e4fa9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189819 Malicious code in tau-moon-scale-private-analyze (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7e39b6af5aa0b6b25d8b7e6b8d55595b0aa3c3e86f6689b8c787559f5ca865a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186150 Malicious code in chromedriver-jwt-paleoclimatology-archaeoastronomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2cb2f2137c452ebb2d8a64c018224266e1efcae54ed025cd2da9b04c00be0f61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186671 Malicious code in easy-kernel-deserialize-public-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1c7f9693c4ee4fd27e0d30c8a5e7c70561a199ab73f1468b17ef1596d9c03dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189008 Malicious code in quantum-uglify-js-acamar-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45ca996a0f37fec8bbeb92598671e30801501dc4df71a3dbf77130fec73874c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189969 Malicious code in transform-semantic-ui-eleventy-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ffc4d6e7b72b0aaa2abde280bb586981de8ed65cc2174a163599fb04f6fa777 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187990 Malicious code in mesosphere-jupiter-sirius-spinner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9644d9c205b35461491024d83d86512d91f81d021787e7443dcc5b68ff0c4ede This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188800 Malicious code in prettier-pegasus-version-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07184acbaeb5b745eda222d46eac28e2940e487c1388e93807d25bcb67d72286 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185527 Malicious code in archaeogenetics-taphonomy-blazar-singularitarianism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aefd22fa7cfda1c1258d658da20bb019dfb96856f3a8392f197c7146107aa612 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188545 Malicious code in panspermia-atlas-vortex-chakra-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1dc9f444fe4a69dd71ca44a7b6b8c4363ef408503c70deef29525151f537404f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189676 Malicious code in stratigraphy-helios-janus-electron-builder (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf187e7a7ca538a0b527d50aeb801c014ec1950459808d4fe3615e1fda01ea6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186163 Malicious code in cli-cordelia-chalk-redgiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a90893c3d7e4d4fa1c3626b55b27eb9e39f5ec83bb10dea8c99465c4493b68b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190132 Malicious code in vega-eclipse-paleoclimatology-lacerta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e08a1aff2176c66f563e527058bb5b24409ae3fba13d78bb63d0c8d68d2a826f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...