MAL-2025-187313 Malicious code in heliophysics-pino-umbriel-request (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68d13fa24ea00cdcbb15ac488921f9c6c192ed00f12f1b47d659992b4fd4f4a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189786 Malicious code in sync-taurus-cluster-webpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 187342dda72bcfd9fa9b7508990e5f40d3d2fc29ab165be4e68d0524f897b5b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185520 Malicious code in archaeoastronomy-epigenetics-proteomics-request (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eccf235d07fb5b9150ec0c3ed8014227de1a1e59d4cd9643a3a785690ca480b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185436 Malicious code in alphard-biohacking-areology-kardashevscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 285400694813ff1ec33716d7a4f6d913baec9c2facd09a917816e0128598419c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188145 Malicious code in multiverse-carina-boson-fusion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76a771cf283fb9950e43b2ea7694717add47719ecac98d5e7cee380843483edf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189474 Malicious code in shelljs-fermiparadox-bootes-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8199a85992f315d21ea68c13b0beedab66d67bf10eae645fc8bdbc5cca7e9cca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188444 Malicious code in ophiuchus-spectron-webdriver-sedna-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71fa83ca1c2d7a7aaa4d2de8c7a3e5b67b553a789c8feb8c2b2f77e620a77f73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189130 Malicious code in registry-readable-nucleosynthesis-jsonp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 312e23130468892f66ec008e2c37d568ce30ed98197cec6017648e4fe9825d86 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189701 Malicious code in string-version-oauth-epimetheus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26e213fb9221c7908b5b9848b956225571f8e08d9f50f1f5f8464652f1dab800 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186414 Malicious code in css-loader-castor-supervisor-elara (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 193b52bbac9dd8c437627cdd8702135559f279b67db8494364cbc1d7a07bfec9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188781 Malicious code in postcss-loader-install-thuban-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 778749957419a4be0f2a22c512b8fe2d8c4492150fa5d08d04f64eadb7e70703 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186620 Malicious code in dotenv-safe-electron-delphinus-dynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d491829a6e7f4d4e2562199356d4961f3431ce86074cf26882ae975582f4b4e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187121 Malicious code in gatsby-enif-tachyon-prosthetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd3e1fe40b9f4663cd8b878d886d2d8206a84740ad4a30ca7055e0b73b99ffd0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189961 Malicious code in transform-blitz-element-ui-helios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f0718911e1bd9246bcc62a5c6328b03e3846539f5bb7a874229116d8f787ff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189174 Malicious code in remark-exosphere-cosmicsilence-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e957895b962f8adc6e7b566c2611a524875a29b93490125c8e08a0c643b3e0e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188502 Malicious code in paleobotany-perseus-draco-mensa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e95a9252255738e39fa00227391b21d62088949c92c1eaa51e5d55ca244ad53 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186459 Malicious code in cz-conventional-changelog-webdriver-mocha-lepton-abiogenesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7deb0c94ebbbbdb091059c3ba19584ab4654ae5392ebc9f3b89e7bb345c09a18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185599 Malicious code in astroinformatics-accretion-dysonswarm-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebf69323bf479cc5874cafcc0077c2229dd31319e197f5222ed445892ce4d910 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in geomorphology-astrochemistry-alphard-zenith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 206b849dc5689a7e5c43f5c73d619dc09d9bd8248ad29e5e4a9c7beb15c96102 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in registry-local-biotechnology-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9231156a824bb7cc0a68e0cebf262d6d2457c813ae5b4c9f8b5ecb2229089b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...