MAL-2025-185976 Malicious code in callback-jekyll-public-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e37871c5d8d32001ecc33cfcef2b8297490b122f158b68496524289819179f33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188484 Malicious code in oscillation-leda-warp-framework (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b4034a7c18a9c9766f734ef16d4eadac9e3d3574d8910068cacc02e37e741318 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188079 Malicious code in miranda-native-alphard-browserify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d87962789ed9ae812165f1253ddd66dfc007bb8159135fc21ee856412172029f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189580 Malicious code in socketio-spawn-pyxis-nestjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e9d1cf25a81466709ef959f4e99e76747753682450c3efeb51214af159a4a9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187893 Malicious code in lyra-taphonomy-fusion-exosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30607827e4a44c0862bedd788a86ca7e751a17e1b53d4cbf6b813e174e0cfba4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185752 Malicious code in baryon-eslint-ariel-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 061d29703953f2dc7b97effa3f9c7af300ab37b14213b9a808ac83c5a54ce6b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186248 Malicious code in commitlint-config-angular-forever-dotenv-parse-variables-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e8eabd8ef0a60fb9207674e7219976cda9db0950935484582aa5086ac905614 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187315 Malicious code in helios-cressida-biogeochemistry-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0768619dd13d60c867707b16965714e491fc15a027c1e3dec26fee22674eabd1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189561 Malicious code in soap-winston-thuban-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5884709882a0901b1904e76eb744c4c9941a1bd7fac9620ad40f74acc518a753 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186473 Malicious code in dagda-polaris-entanglement-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5325a6a4cc8abbb32dc79710052d24b808fd1692e4b2370bfa9cf74f61373dc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186052 Malicious code in centauri-mesosphere-deneb-solarnebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d7fe577b56fcae0f18e8a9da6f6515f83d22eb7cf08237af200ee4ca5977f6b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186291 Malicious code in container-encrypt-kappa-virtualize-old (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f797b4a9f89f991872b9512b2adfc5ff57180b4e3a26fdb86bc508e15a96a1b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188983 Malicious code in puppeteer-prettier-stylelint-cluster-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector edfccd5cbec553bf6d263e710fcbad1bfc8232a17e489b57cea10c4d4c137775 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185873 Malicious code in book-good-old-sun-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2cd52bc87cf6a49f1316acfb38ffa8d78d4dc56904ce569006a96a9d6b4270e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187996 Malicious code in meta-boolean-analyze-decode-cloud (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc9f12b07ea4eacded6b4cff311fde2093c73f60e91d1570a14fc533f8925ac7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186028 Malicious code in cat-big-code-star-encrypt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3f3f6f9d454212a45cd8e581e11bfd884a5fcbb6280ff321fad59393e2c987a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185523 Malicious code in archaeogenetics-astrochemistry-quark-chakra-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9101bb249512831ae69aebab145195c2c777abc6fba8d572f58c08df4437898b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188698 Malicious code in pi-validate-water-test-tau (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ecddad273b22a7a6a747b0fe0d76b37f55ab197c1c73ad7f8f48726d7bb7c1d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189969 Malicious code in transform-semantic-ui-eleventy-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ffc4d6e7b72b0aaa2abde280bb586981de8ed65cc2174a163599fb04f6fa777 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187911 Malicious code in magnetar-palynology-uranology-blackhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcd8cb005d3b13b23a50a504bd007171a1a10b97495979bb817020abdb259373 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...