MAL-2025-188451 Malicious code in optimize-css-assets-webpack-plugin-style-loader-bellatrix-prettier-stylelint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abc399df1baa583fe9c5b3c3d19473cebd1498ab6c0de46cdc1ef484368df6c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187554 Malicious code in isostasy-rate-limiter-miranda-chalk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8886bb1b3aa2881de5d3a090df3f702e15600943bd93f6e415c544b97c814926 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188894 Malicious code in protoplanetarydisk-thermochronology-zenobia-multiverse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a758e62d1f343445dc19b0a564a18702d6a739a33dbcd10ffa4647fb31d66c37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186208 Malicious code in colors-rigel-bellatrix-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c137eaed40b31b6152069e498b6ba1512a5e4a72eca57a6d5eaed47da47afb55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185797 Malicious code in betelgeuse-perseus-despina-radiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba22f0c594d568d54e12967d841c787fd3e71573d84357c6a218f291e91747a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186267 Malicious code in concurrently-grus-vuepress-zenith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7074c66c67ba8954226ffe4caea4be815b7cbdb15439e2f2e1a589d8eab0e173 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189932 Malicious code in thuban-charon-uninstall-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 743ae6cbbbc27159bd1e3230d2f79754bd82c0b625304d5cc5285d043d6b7002 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190195 Malicious code in vuepress-update-canopus-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11c0ba2e936fb4ba21ad01bbf840125a863fbb501192f3e88e43e962473e8fb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185793 Malicious code in betelgeuse-gammarayburst-puppeteer-rehype (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5130958447a541346c610348c14c00f249776c21a7f1dcc342652db121fd6f92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185392 Malicious code in aether-mui-postgres-mira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffda47166b625e26114e1aebf4cfcdf0ba36e5dc18a49ff0d9f0de1b5375abee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188946 Malicious code in publish-antimatter-augmentedreality-hawkingradiation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0d5d6b123e34a8689a89de8c4284bac809a0af916cf5f51956e0bb8bcf35c67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189258 Malicious code in rocket-fomalhaut-sirius-kronos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 344f2bc058eebc6954eb5e9126619426a4e49a9670f2df757ea7590314e6af3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189617 Malicious code in spectroscopy-dotenv-cassini-sedimentology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0877ae9987490da3e59673ad1d155843077b9fb9419c1942c74445d2543962a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187954 Malicious code in mdx-kaus-browserify-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c35c481bdc9c3cd04791a4bd2aea3c97faf1ab41752bdeaa06954b53da493801 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189514 Malicious code in sirius-darkenergy-selenium-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d8a88c1473d6d62a4e97fff41207584a1a760e37bfae59d36105075e63250f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189571 Malicious code in socket-mock-java-rho-spy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c73783490d318eb38b0f589f800124ffffafbe09192fd2fb01fc5ce1f82b4195 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189107 Malicious code in redis-browserify-nuxtjs-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 711d716900670192f72189f880361a7e02ddd5ee99dcbecd1465b28f95bee624 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187194 Malicious code in google-bionics-flare-biogeochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 721da62d8e5ecd0152fd394c7c4f7e74c17ca686615f02e8d31c07f1e323c48a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190323 Malicious code in wind-execute-authorize-mu-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1bce93345caea591cf340b36a60b30e9eaa3c806ef3f71fbbf3a81acb565f6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185862 Malicious code in blueshift-exoplanet-buffer-primatology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d143c1c5b2aab61f831840778fd5711d8bdbdd3009b39af1830df9580dbe9f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...