MAL-2025-187538 Malicious code in iota-hugo-mongoose-hapi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a38d5dd37b1d3a02248bee4b3d4f536393bee7b92c3c8e07a12e1e35b6cfdb14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186299 Malicious code in convict-spawn-gravitationalwave-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 128d86882e0076d80ab9827d708aa6534aa225eee0e3afeb4af5dcf612c62f79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187660 Malicious code in kappa-nu-daemon-async-bad (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b657d373edb8e61669489b5128e98ebd488496a11d5e249541214b28a780a773 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190349 Malicious code in xanadu-ganymede-thuban-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee9f8b8c8bd97eb72abbfb618a0776afb1768b178f6a5f06ba703621965be9f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187037 Malicious code in fornax-socketio-ganymede-boson (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbf81223eb44037f720c7f81236de5d3bf785a23ec6a4b48c754958e420b7afc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188072 Malicious code in miranda-gacrux-stratigraphy-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06412ef9850be1e7a1ccd8f1007f1b16b41bc66dcde0d734ed417f747e5780c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187442 Malicious code in impulse-dependencies-spinner-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b1c5ba732a67d3f66094e9fb848726d7544d82bb0de3c82c8ad2e54e6932cea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190109 Malicious code in ursa-jest-antd-helmet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d33c8be0ca0bb199e1726c8dc39437ee5c00d4402fc8e2a2ea5ffe0b0846ad2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187340 Malicious code in hercules-winston-janus-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 662c745f54f81147fa240741e0bd6e9bb86d4b36e48649b5f8c28febba93f59b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186255 Malicious code in commitlint-publish-fornax-prettier-stylelint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58d0a6efe42d239d3fb4ecfc887966e3ba7f79c8cde0ddd056df53c7460a5ae4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188400 Malicious code in odin-mensa-magnetar-react-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b16d64969c8f5d9116a9d619232f9bfb3cc7ee0898044a3be804b3e30d3f6e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186912 Malicious code in exoplanetology-grus-mdx-comet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ea31ec52f889b7920874ca91182d58e0b0d8d1ab58207de68d3023a074c7896 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186220 Malicious code in comet-perseus-andromeda-terraforming (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48aafdc9143f2f03e019398a2f17e8554586833012e56e2e3ea753d55afc6471 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190386 Malicious code in xerxes-non-blocking-baryon-solarnebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ae2eb9332acb82fd3f4234327e07742b0664e9628b1ba566bae6f2422fb622e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190343 Malicious code in wolf-baryon-pino-phenomic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c5c26b4bbddebc8e36586c62ff40c2aa982515ba61ec3a07619de7e7851a02d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188026 Malicious code in meteor-jupiter-jupiter-xanthus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46c15bb4dde7cb205f506deb37c235142955b3906d8918fa352ab7add70e6e9f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189564 Malicious code in sociobiology-radiometric-relay-geochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c45a0cb4544585045819b6d85c347bea35b81bd249d8c80c711911c1321c1ecd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189428 Malicious code in selenium-avior-antimatter-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42db6c042c566e179df6a1d7dedd3a0cf140b367c1acfd4d03ed2f557fe89d41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189824 Malicious code in taurus-configstore-delphinus-nightmare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bb641a5bd2c178e2edebd041165405025d149fbff5933904010bfd420071e94 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185456 Malicious code in andromeda-impulse-quasarjet-elara (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e410a4fcb58b2811102f923002858586bc7bc659b7f0faf932ba2c0a1456af4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...