MAL-2025-188947 Malicious code in publish-ichnology-eslint-config-luna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1632875bdcfe6f85b8d1e6bf0269dfd2a2eb7755789677cf74531f47a7a1d82b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188458 Malicious code in optimize-theta-process-cluster-dog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb2b3e9d3328a363fb5b4710efab7a9851461ed3577869eae397a170f5d2476d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189259 Malicious code in rocket-got-heka-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 778e69e1b6a1c981f67cb6ad0fce677345c087976404dfb27b70709dfe9619e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190442 Malicious code in yonder-webdriverio-lynx-blackhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfbb715d4acf64ade15a47fd3c5a01c86a6a1ba2777dc7bb8b003d084a247a51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186833 Malicious code in eslint-config-apex-hermes-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f73ba82f9d9c22e1bde2447c605b7f915aaa35732f226fb83172e499f027a621 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187721 Malicious code in lacerta-polaris-tool-resolvers (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e14658508cd2a68cf53158830bd8ec585bd27f436ddb4ef01bbd48b3cf1384b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188202 Malicious code in nebula-development-less-loader-achernar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8176d9ec969819536ec693125456e7ec41bb0dcc6c65811409b1a99ffb0fbf13 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189466 Malicious code in server-redis-umbra-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70ad1596bcc3e80829a1c46d11fe776c209f88cc4388e02ed286d6ad1976e9e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187423 Malicious code in ignite-callback-cosmochemistry-paleobotany (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f4aedcf4678e453f6fbdfd6adbf5945076be8b34eb44f5e0b9fb8ff3244b536 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186079 Malicious code in chai-javascript-pulsar-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e42433738cc5a2accb6a2b35a72082ee4ac69aa8f58a357c9658e5819a94fc6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189034 Malicious code in quasar-robotics-soap-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf869e7625d64431a49efb119397803362e8d03292cfed0a621e19d3d58e102a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188921 Malicious code in proxima-thermosphere-weywot-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2244dab451a96c625aa78d793fcb3ba1931ffe5080498587c46c6bbf7f5a3d62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188365 Malicious code in nu-grid-import-chi-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 200f766004c24652d0932dc06aa4b8466f33c8f680b403bc5562d701a3973417 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189179 Malicious code in report-easy-fast-star-grep (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08e344a2c581a34f772f67b04c94121c2f5eac9b9db0669af25db99e4c58e086 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185852 Malicious code in blaze-farout-module-transport (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4192d7aeef77906c60bb34e7bc30349a3cf23117c8fc3d3afb6d6a2a96bae8d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189655 Malicious code in star-private-minify-bad-compress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c073ea8c71ff7c1c682370bd5c071b312cff6ebdf04d0b7966fe8d9f0e529a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189521 Malicious code in sirius-registry-webpack-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c310c475846e8ee5e7c18a1b32e566c7929067fa02791639c37510e9d7820c0f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187870 Malicious code in loopback-remark-cordelia-commitlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d03050b2cb2866d7de11164971c4591795fadadb14bdf9da6411cc366238b169 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190358 Malicious code in xanthus-redis-scripts-fomalhaut (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5378a4c2406d3bf5d4a642721349c3ebe3396f5805ea6a6298f597ae191792cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187908 Malicious code in magnetar-eridanus-middleware-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ead7461c3d12da73b3122b7ebabc893dd659348b18da148e543e262a5a0c0c27 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...