MAL-2025-188150 Malicious code in mutation-augmentedreality-archaeoastronomy-neutronstar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d350f2ae2d91b828a2e264f7f2d54908fc2de495a298a5dc6b69b023837e517 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187019 Malicious code in fork-lightyear-commitlint-unuk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abac3d062ea3dcd3ec025e59c52c1aae54d1282809da77aa80fe4c6c4b249010 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186368 Malicious code in cressida-indus-epimetheus-borealis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86889f7ce22f369521ce2fceeef29b4481464a118b534f7a620ce86b6d283dfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188801 Malicious code in prettier-plugin-markdown-aquarius-colors-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93e02a281f78f15c659fc2bc0017a1f4fc72c6e3519a06df0c8b38338db6ed47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189551 Malicious code in soap-auth0-tailwindcss-convict (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ec2c20f4554ecdd1eb1848e47edc8c1868596d8237df69b171abc1da7ceb1c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185392 Malicious code in aether-mui-postgres-mira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffda47166b625e26114e1aebf4cfcdf0ba36e5dc18a49ff0d9f0de1b5375abee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186972 Malicious code in filament-tethys-brane-upgrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd79b06d69f04ea8b0388bfa6ca124a65859009529152dcd4cb8413e3089e76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185510 Malicious code in apollo-webdriver-manager-jasmine-wasat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab09b1b5b69cdb79894f81b1757af0992295947fae65208dd818da8f3817a483 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189279 Malicious code in root-fire-user-hash-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d661d39558df81fa68a4a36b87bcf5da9ce98e30924826a802a862aef080e2f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189213 Malicious code in rest-nova-nightwatch-commitlint-config-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 667df92958e84b0615d81c3cbb178f8c117b019ca8357f70aa7c4c9d742be2b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186906 Malicious code in exoplanet-string-bulma-tardigrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3db6d30965032b31e8676816820d7bbeb491cca49937b3702c7436d896a3b8df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185673 Malicious code in authorize-float-signal-string-table (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c818eb168c17bd59b31cd9c9fd8fb24062591d2a7f46885d4ae24493b54d593 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188851 Malicious code in procyon-yaml-figures-toml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f7740a3ced9536b2d669360d3d0007870b01aeebbcd11690bd66779cdad44da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187935 Malicious code in markdown-prettier-frontend-avior (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 659e8b9f5234bf3784b1ddbfde8f82519b786322f78a3a6131c158daba967810 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187180 Malicious code in global-eridanus-yakutsk-prompts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 049486c85c0e3eaa7064b02722bfb18e40ddc060886b0de61d8e5f4aaaa669f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186801 Malicious code in equinox-sedna-sequelize-convict (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49d21c1e2f37e5e821a84eed480f80f27b364ea4e2b3e2b5cc5e1d16499a649a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189991 Malicious code in tree-awk-notify-beta-cloud (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c40a4475634ccb865c954dd93557022a7dd70e0549691c1cc71b59d788988cb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189674 Malicious code in stratigraphy-archaeogenetics-pino-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c8b8215edc8d75314fd70706553211c18d60e357ddd2ba33d98c9aebc7bfc32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190379 Malicious code in xenos-lepton-cosmogenic-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bd42edaad102d51c7897f5f9f97d176aabb390e1ccf4beee36af7105a32ec56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190038 Malicious code in umbra-iota-graphql-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0216011a857c745443a164b8b961b2825a42498fd66c95b1ea56899885b894bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...