MAL-2025-188381 Malicious code in oberon-mdx-hydrogeology-bunyan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03f7ec2bd6822ff1708b0250bb0c57bd1da996bc00fe5b964037082fc9942ea0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189665 Malicious code in steganography-aether-on-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a82bcf9484d0efd576c49a8f70274e7b0f9d424b9ac8f7f2c024d1aa3911a92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186607 Malicious code in dorado-hydrogeology-zooarchaeology-regulus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84cb81d2f9006de02c80f2639b15652a181f70f10b8472afa9f18e90b375cd59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188490 Malicious code in package-changelog-css-loader-slidev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf183518eb8813f78ae38737637f90dad98dce465ad977d4ef42935ed1a8da7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188989 Malicious code in pyxis-enif-wasat-borealis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6360d976d2a538b3cac4e6a6de90d4745ca11d9890d84db004a268b40fd52e11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190115 Malicious code in ursa-protoplanetarydisk-electron-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43730eff79ee89795068b5ee0c4f33390ceada895b6ece6e610d5bb830bc250f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187113 Malicious code in ganymede-style-loader-xanthus-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36a5f45d9564f44b2db677d8a064664c3950bbf58615506c9507134b1044b3ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188616 Malicious code in perseus-ablation-elara-cryptography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc46309237019f72cd49c94414276dcd3a6baa3c26c9218166b198c5ec16b9e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186740 Malicious code in encode-rain-refactor-execute-pi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06ee24f91b8cf6e03f7269a7f2c713ec12a15e887c78c0ea82e730ed28149481 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187897 Malicious code in magellan-augmentedreality-webdriver-mocha-blitz (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab10f2e6996aaa64585be8f1ccc8604e6d29c1836aa5cf29ec696ee0e297c364 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186608 Malicious code in dorado-jest-gatsby-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3af9de4e8e9dafb88bdd63a361c5362004e17237ed4fcee7acb6bc660c15eecb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188016 Malicious code in meteor-chalk-blueshift-gulp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3261ab78dad9de4315430701c10bbd595ac7f1148a275b466115baea23d4af22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189213 Malicious code in rest-nova-nightwatch-commitlint-config-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 667df92958e84b0615d81c3cbb178f8c117b019ca8357f70aa7c4c9d742be2b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189169 Malicious code in remark-barnard-commitlint-loop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78fbc8f80c4eaa1b4e6c6d18faaabd90528b2cd1b8a5e7b7f6333164c23b83cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187018 Malicious code in fork-eslint-slidev-chakra-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14f8ab67ea8427ea5b62140b04dc5a91e4b2512ef31a7be5a7f29ca3f838dfed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190359 Malicious code in xanthus-tectonic-levels-xanadu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d90865d557f01264ee242fb2dfeabb200ed169fc59c91f5f3edb8e2e08563342 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190416 Malicious code in yakutsk-electron-nebula-jekyll (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e3af3d47e9940bbcfdc5b9bcad2402c0f51883d757f2146466144665b36d363 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188747 Malicious code in playwright-wormhole-phylogenetics-inflation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 998a8014614f0315a660ed56446d83ec0dcb914bcbf25832b2ba07ba5e3b4ad9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190077 Malicious code in update-leda-ora-bootes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e252313c23c3c5509c627db3eebcfc9456566db411c0497086f9794cb39f2fd2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186925 Malicious code in export-zero-orchestrate-zero-compile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5af09b797e4f7aae7c05dba3d89244c143d4393bfb4489b7d6453160dc763868 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...