MAL-2025-190368 Malicious code in xenon-apex-ultra-zenith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d255eba690342099284d8bf8a8103b1b72404c253a39810bbe3abd1882f8030 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185635 Malicious code in atlas-browserify-rigel-mira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c9a528d585d1bd68f821a97b54d3810ac0f7fb130157b2815a5ecc843be8df9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188796 Malicious code in prettier-json-publish-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3c227b49ee21c7585211e16c411530204bd43403fecd781aacd0227c4f241de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188224 Malicious code in neptune-morgan-pyxis-australis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a87db8a27a89fe726fb48c35503b12c1183506aaf4a9a2d8765e08c568c719f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185661 Malicious code in auth-pm2-xo-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60541e6f176099b0b6014c32803b87028642aab5dbdef63c049df0f8c28d8ca1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188007 Malicious code in metalsmith-ganymede-gravitationalwave-biogeochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd371531b6504d7302f781d1d49aa918cc42e03fda931b017ec70b39844a114a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188000 Malicious code in meta-load-thread-grep-decompress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 109caf8ad26be27a56c9b5d71584ee315b90d7198b132c76436f93ddeb1a2f10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189290 Malicious code in run-script-juno-supernova-commitlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28d5416570aa5bf98628db20b38d6aa688ee1a11743013f75bbbf34b033fb219 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187666 Malicious code in karma-cross-env-mocha-grus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc707037d54ddbddf16b2cf0245a7546cb636b2bd26cc4ef826e23f5433923df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188264 Malicious code in nextjs-html-webpack-plugin-express-gemini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b3221eb423eac0b572d326e1984f49231a18c9d5791b59c0f4a62fa33add06e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189588 Malicious code in solis-chakra-ui-comet-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c944e50187a88c0aa55f68b8a6f137dc34aa9a7e65fc342d26e2ab27158f1c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187511 Malicious code in interferometry-paleoanthropology-innercore-seismology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5111570fb96c1ba759d258ad82f85016f3ea249aa5656e2e525ebc6cfa974bbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188855 Malicious code in promise-compile-interface-benchmark-fire (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b306b5b7cc9339e9799edff3557952329fe0e2e2ea03105bd35bdc395d9f0202 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185581 Malicious code in asthenosphere-auth-andromeda-gacrux (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd65aac5664169f28da94ba7b0b9b5e1ddc284c8fb135b806e87c8c47b844445 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186353 Malicious code in cosmogenic-spinner-andromeda-quasarjet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3192e1b1356672c3cd9c2ed6782552c38b1e7b45566fb986f074c3a22823a61b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189544 Malicious code in slow-promise-delta-root-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 978db9873fd5163d504d6dcef0b180a56a9a49e2c99ee402c0549f5d2eb165d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187974 Malicious code in meissa-perseus-eslint-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e806cff752234b07a544f7a82097f1f529d1e1a23d1d6276aab2245ee0cc70cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187582 Malicious code in janus-repository-acamar-jekyll (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c352b7dc2bdb562f75a203a60a62f9bd3e23618797491c44e1f3d6593927eae2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188340 Malicious code in non-blocking-miranda-gridsome-cosmicray (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78ded373441292494a43935f760ffc243265ed07283b7797b8afa7f81f2530e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187436 Malicious code in import-log-monitor-rho-function (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e0aa8e668ba36d4d41ca2d43ee6c401b9c982a3750a080700e0fadd64b7ec5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...