MAL-2025-186700 Malicious code in electron-builder-lint-typeorm-bulma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7e5beb67118d8fdaa1e144cb2556d1c7eb507b684f06c0a99770132a862715b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185867 Malicious code in blueshift-standard-altair-higgs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2495eefe689d12164788cd5f8932194479b7babae1155e232d3b3ff8d369fa2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188763 Malicious code in polaris-juno-taphonomy-membrane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57aadb0c6fc2fa048e9640b5186c58a3bf3c7e138f166b104d24916c8d7d6286 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186238 Malicious code in commitizen-antares-magellan-saturnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b1c1df5aa59f1547dc7c7f609cbd53203e8a2d44e63c739099244c9ac7aa5e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190469 Malicious code in zephyr-prettier-sequelize-callisto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8f33cc7656a725e03d077a064f3e7e9e32e71a10d7fff8cb27b483865200522 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185742 Malicious code in balance-char-byte-final-big (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 817e865ae1c8a984187cb4dbd722f2a15ab88822dc1ff846b8b0644a317fdc6b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186986 Malicious code in finally-validate-spy-transpile-scale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9042f0ca03575eae11d95191fb56e4a493c9d9cc6f78b44ff5664df90a5eae0f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188542 Malicious code in palynology-semantic-release-pulsar-wormhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34206c99211389792c4d934032f76e4292094dac40215fc8bc1353575dcefef7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185463 Malicious code in antares-bunyan-apollo-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2c64bc39e1aa26b38456721f22e94693806377129dbac49a767a3dbeb61f372 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186535 Malicious code in delta-sun-psi-new-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 374cdc7d058badce2f6a42696c611854a14f6b677f5cc78ec1c95958aa1ee55b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185622 Malicious code in async-iota-pavo-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c1b1f4251a47dc183f09a26f155bd0931ec87d8606fb9177ab5ad1f58112403 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188047 Malicious code in mini-css-extract-plugin-meissa-chai-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f10f238dac0f01e63a9ce7a8c017e5600af3dee37d61959eac17ea52e027d019 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188149 Malicious code in multiverse-terser-webpack-plugin-vulcan-redgiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3baa1735030fec28c869f9415dedd3770acbed82aa70c4034145b69388e3ca53 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186467 Malicious code in dagda-ablation-ganymede-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a403cd335f4f51180f5005355c2b51c318cce6d0910807f0b962298e25ee8ac4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186906 Malicious code in exoplanet-string-bulma-tardigrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3db6d30965032b31e8676816820d7bbeb491cca49937b3702c7436d896a3b8df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187870 Malicious code in loopback-remark-cordelia-commitlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d03050b2cb2866d7de11164971c4591795fadadb14bdf9da6411cc366238b169 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187065 Malicious code in fusion-inflation-dactyl-webpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afd7df62b134bcc7afb6138cd72c0148fe9828de23d7012fa0e5c0c2047e9063 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188129 Malicious code in morgan-sass-loader-release-it-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c153eb6fd6cc614dab9d8fd43c3d5a0e5258e9ae6ddd573ad103e2a78cdf4f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189370 Malicious code in scale-hot-tree-cache-execute (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca31f523c05889fdf9ef41a4517c7fe41532a653c9225ca1d2fc0b4f96c7b705 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186351 Malicious code in cosmogenic-genomics-scripts-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ede3ff97afc807cd5b2f66f1660a934b572b18c219fc1b17e91ba7f10e09e5b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...