MAL-2025-187555 Malicious code in isostasy-slides-augmentedreality-jabbah (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5c520fdb6218dccc2dc1ade6fa90c7843862fb37f3d60582efabe4b3962017e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189117 Malicious code in refactor-cat-epsilon-interface-monitor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 936aecd5ce3be34ebc0072e78c7c6dce28d37fa9462635513930d07f7ba9df73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186989 Malicious code in firebase-ganymede-registry-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 110bf147f478aeca2501ed4ea4b9701c21692ba23560b2d3f5234b657b5b721e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187791 Malicious code in link-emulate-double-table-book (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f82ea3cfbf4ead6d879ce2cf3a4148b644434223de5718844f6f514cef0a842 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185678 Malicious code in authorize-omega-earth-abstract-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b37e4245c69163fdc9865e5df8850709887150c4fa34928d8f0fee271852eb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190038 Malicious code in umbra-iota-graphql-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0216011a857c745443a164b8b961b2825a42498fd66c95b1ea56899885b894bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186406 Malicious code in csrf-bootes-html-webpack-plugin-ichnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42e683c14d1e59c58cadcd514400f46ff49670101cb068cc2ecf1d95b413dcf9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186449 Malicious code in cypress-phoenix-higgs-chromedriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1790af97737c369218f83515854c87aac6243d0a77963daa49b5f8de55a8d564 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189169 Malicious code in remark-barnard-commitlint-loop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78fbc8f80c4eaa1b4e6c6d18faaabd90528b2cd1b8a5e7b7f6333164c23b83cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189466 Malicious code in server-redis-umbra-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70ad1596bcc3e80829a1c46d11fe776c209f88cc4388e02ed286d6ad1976e9e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188173 Malicious code in nashira-winston-aurora-gatsby (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9af5c52e6cf6987260607279112d0d054adf72f69bd5cad9cc62fec8cf109c67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185897 Malicious code in borealis-promise-spinner-ora (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68c7357be2aa15b46b85c919af1456a68d791ec27c6ed54c2d089fda32b2e8e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185372 Malicious code in acamar-halley-eclipse-kronos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f8ad09c0a08bf031574152a898d8286ae2d35f3ed9cbf41b4a8ecc5cfe5a745 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189273 Malicious code in rollup-plugin-loglevel-archaeoastronomy-on (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ae1d18ecda3a4a15013d21d522f0598cfc55b2f622436d4550842dd4870a5d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188202 Malicious code in nebula-development-less-loader-achernar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8176d9ec969819536ec693125456e7ec41bb0dcc6c65811409b1a99ffb0fbf13 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187700 Malicious code in koa-higgs-jasmine-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a94744e4363382314160fd2c7e5b498755be2a10ae9e8fa7b684813a28d90a46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189033 Malicious code in quasar-promise-kaus-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 041ad73f1af79afd5f9b6ca0c4c7ba14072a32c0a2b16fd9c8af00d6bf033c50 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186153 Malicious code in cladistics-charon-sagitta-protractor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b290803267a794b52c10bf128a22515a1e42d7fd608db0434de366816debf0aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cross-env-dorado-eslint-config-zephyr (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0985a4ef455f65277df5cbe81f64d7157822a1f417ec13d808b81967e4ce8e28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185973 Malicious code in callback-dynamo-lacerta-chakra-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6d300878b315b706f8527cf43747b70cde297845c6d57fd85b3a93e8b1d283a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...