MAL-2025-188995 Malicious code in quantum-computing-eslint-plugin-zephyr-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e88f3f76a14f5bc81391f34d6452a089594d0603cf85c69cdd178397bc3c36c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190203 Malicious code in vulcan-asthenosphere-babel-exoplanet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0dda41e2e382a5cfbb82103d57a5d91dc0d320161ecb63ec8d14e8e0f27cd2d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189123 Malicious code in refactor-socket-container-wind-sigma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d89a8b301a82e34718e719086eb65c46906b20adf7618bcf4881930e6ec4b03d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190154 Malicious code in virgo-arcturus-hydra-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3200001e1e1fc337325316bb47953dad6b0ac3394eacacf5aa17ccdaacf52315 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186459 Malicious code in cz-conventional-changelog-webdriver-mocha-lepton-abiogenesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7deb0c94ebbbbdb091059c3ba19584ab4654ae5392ebc9f3b89e7bb345c09a18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186868 Malicious code in europa-fork-andromeda-kinetic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f06c976d398e6600330ef91542a8aa6d3f7aa644912faa1db980b04078a6339 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186191 Malicious code in cluster-wind-decode-sigma-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd89e6d425ea10a6bbc7c23e11410d5d33053239f7ec72033f36de7f54628073 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186087 Malicious code in chakra-ui-fomalhaut-on-cosmochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 626310491e4df1062e97b696358239f834cf757c5dfba5eeebcdb0c80a0067fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187344 Malicious code in hermes-dactyl-canopus-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62799d2b20f03765f78f7108ecd6c29ff5e28773faa479e8584065f639f569e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188678 Malicious code in phoebe-taurus-xerxes-quantum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6ce33902acb11575c7df090bd0de3e13592b69b1c04fc0393bb8dc491e30e1b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190114 Malicious code in ursa-process-query-metabolomics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d9eb276d7c42a3eb8d32f6a4fd0ec8a87d3a091523a686fbe495218f0f56f05 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186013 Malicious code in cassini-html-webpack-plugin-loglevel-jest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c9033f1763d5ba00b031a7c88ae9daa1fa6d813e089bdadca8c7150998d3917 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188777 Malicious code in postcss-html-webpack-plugin-enif-ultra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed318452e4290638abbef91f54d51d2d2f0ecfc9073c4d399951524680acd6f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190051 Malicious code in umbriel-transform-corvus-request (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba0535ab8475a2cfe19c1ada68feab5732883367dc7554d2a673d0616d955ddf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187087 Malicious code in galaxy-blueshift-astrometry-quantumfoam (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11c73a4c693491673fc8c94de7e4e6149530af1635a4e9230317c4fbb26d2a08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186554 Malicious code in dependencies-dynamo-optimize-css-assets-webpack-plugin-gatsby (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56b88c2d2b382ffb9df5c83d2623b4d0be3b8e53cf60c14ef812d31a57ce193e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186913 Malicious code in exoplanetology-link-commitlint-prosthetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bfcec8783f7472850817c3503803a35451836d28a4f9dfdb5f2a6cddf295c61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187681 Malicious code in key-encrypt-bad-class-kernel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f34deec438e96ceca214bae93f61a23a54113b89535960b575acb32a4857fc3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188953 Malicious code in publish-oscillation-astrochemistry-spectron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 154fe20109457e48fa5577f4bc485d5bda793bf620237fb9f1e818447da6ba67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187504 Malicious code in integer-simulate-mu-class-permission (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2d1e3e6d31b5281338a503320c403e664e5c502d3f9b3f3bbb4a6938938b2b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...