MAL-2025-188026 Malicious code in meteor-jupiter-jupiter-xanthus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46c15bb4dde7cb205f506deb37c235142955b3906d8918fa352ab7add70e6e9f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185905 Malicious code in boson-style-loader-less-loader-superflare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc2f50bd5b7c71fb5520c30b341fe247f8acbf2e602197b32e39a8de63489160 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185448 Malicious code in analyze-abstract-hash-code-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94747fbea6244359c0e5f32c8af9461dfd765fc51d10bca1d94dd3e3f0cef6b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187800 Malicious code in link-upsilon-link-kappa-compress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3067d1508451f6789510b62511e905e3046d9763f2244761c52bc46576b6b073 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190196 Malicious code in vuepress-winston-deneb-vulcan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85b680b994c88a74132e41b6149654104412796e59caf936a14b48d70c5e97e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190282 Malicious code in webdriverio-rate-limiter-wormhole-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 546a55ebdbc1b18fed5bbad6be8b757cfe2c4fa0d1f046a9d5deff7b296f6332 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187803 Malicious code in lint-auth0-joviology-jovian (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbc97a55208b7ece6a83f42b44139024e81c21bdc1b43050810b785e84bf514f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189877 Malicious code in terser-webpack-plugin-rollup-plugin-cybernetics-lacerta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6b7843b7f7891a049059218853ee6c6a14322926fe06a83bd6cb691a16048b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189705 Malicious code in stub-scale-alpha-epsilon-optimize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b75f8b4a809808568e4e6cb14303729e4dae23ba42ce8fca5522267fd3e6f2a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187734 Malicious code in leda-jsonp-dependencies-eslint-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5371fbf950c99d96b08240fa9f1145f24d3a4062427ce516eacafbaebe39885c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186383 Malicious code in cross-env-geochemistry-global-juno (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6e07fddec6b4d867cf834c4f7492dbf165ce6c36307b01ccff40a7cf2c89ec4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187919 Malicious code in mantle-galaxy-vuetify-pm2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27d095cf3f4227e38f0e854fa3861543aa352678e355ebee87d347cda3e374fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189723 Malicious code in subscription-jsonp-metabolomics-hawkingradiation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73b99ac4b6d1f2920c9cfeb64b32caaef526384c1277eb268f9495396666671b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187169 Malicious code in geomorphology-fermion-aquarius-oscillation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a5dd8df67636856b60e86272fa741e198eaece85c5f95e6c79aa5e1235b8541 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189094 Malicious code in readable-configstore-regulus-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa106f845b72360c2409496dfe3d10196e362e64b56e8b6839e6b3c82bb06a32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186424 Malicious code in css-minimizer-webpack-plugin-superagent-npm-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ec208a1d158e4c6d43500fa2e73288eb7c5b912b4a3684dfe6633d3d33ce166 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187364 Malicious code in holography-antares-enif-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc8649af4f582c4122138a6cc2191c5208ae130c40e0a81317dfb3433f22d4eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185947 Malicious code in bunyan-pegasus-primatology-quantum-computing (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 44f004c3e5083dc69b6b3d2d97f90a416603cf0b7c30f549b404f4f661464ecb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188010 Malicious code in metalsmith-xanthus-react-bootstrap-sequelize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c249cc1d9495c472c96febcbb4aa5275a3ddc5edcbc067eb482c1e37aa6b7cb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188686 Malicious code in photon-airbnb-virgo-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b57c86807e608c5b48c721b687275aad0c86c57fac80d36be0425e26e2fd6085 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...