MAL-2025-188381 Malicious code in oberon-mdx-hydrogeology-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03f7ec2bd6822ff1708b0250bb0c57bd1da996bc00fe5b964037082fc9942ea0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187391 Malicious code in husky-bulma-nebula-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 029de86705f76c06a577e00966fac5cdab3d36021be7d50cec1844bd03f7b785 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187475 Malicious code in init-enceladus-quark-terraforming (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d29ae2356859bcc4b9a2c4aaa80833cc872c02d453215111497fe3fce96496f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190406 Malicious code in xo-indus-procyon-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 127166ed7ac52806beb38f75aa00eb00ab30d661f9b3ff074fdf4d093831f339 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190459 Malicious code in zephyr-auriga-node-config-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 501e4d8965e877980be3f3890f728502f5d0980ab23ca42e8fb0f60097b5f6cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190316 Malicious code in wezen-xerxes-vortex-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 946bf71ee36457170ee49ec45ec813f62e10c9a664b58f862c83f7a5a43465a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190241 Malicious code in water-cloud-public-big-user (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d49323ade98a3fb6caebbe0cc2612cdb4f4fc617e455e9031e1cb581830ed868 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187957 Malicious code in mechatronics-arcturus-puppeteer-capella (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e1eaa9f69cc53c02498bf1eed85f24aed05f14f42b3aebd1070fcefaea74066 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187423 Malicious code in ignite-callback-cosmochemistry-paleobotany (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f4aedcf4678e453f6fbdfd6adbf5945076be8b34eb44f5e0b9fb8ff3244b536 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190013 Malicious code in try-stub-yaml-query-awk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64d7afc6d4f0fe68228645490da6a101c05503ade1edbaa923ccc4560f7632b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188793 Malicious code in postgres-soap-apex-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b86a98a2d226d8686f0c0bfd665e59b9bb161862d45d5139f58b48ca662cedd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189001 Malicious code in quantum-darkmatter-native-schema (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df4b7d2e949c0c56d06fd440de24261c533ae34fa972d0a9fb8cd3cce716c207 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185518 Malicious code in archaeoastronomy-biosignature-phoebe-metabolomics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae3533df6b043ad28180a290281fdd4efd39807074d439976564c2cd6580cc15 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187866 Malicious code in loop-quito-hyperion-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1026aa50dc1e0844d749d156395863d5338ea4214c14c836f4ac9d9e3515500 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189591 Malicious code in solis-semantic-release-pm2-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25f3fbcd8cfd3f79b4077a30db2336a9949bd3aed84da84464d9498779874eb6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190333 Malicious code in winston-jwt-vuepress-prettier (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e66da85f83a6c52707fb31a1471422b7c312dfaaa2f7333a8af1e1fdcad5471 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187992 Malicious code in mesosphere-nanotechnology-got-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c51ddaebeed905bd3e4d2efb4932a9094e6dada95ad1d5541fb3cc456209d2d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188324 Malicious code in nodejs-cosmicweb-chakra-ui-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93a5092226cfdaec9107ff680820108c965f38859cd60ac2915fa0552cf83dbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188668 Malicious code in phoebe-borealis-vuepress-coronalmassejection (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deaa586f7a513b8036116d867f85c2889429e1affc2ab69c5e417d09987ff2ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189107 Malicious code in redis-browserify-nuxtjs-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 711d716900670192f72189f880361a7e02ddd5ee99dcbecd1465b28f95bee624 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...