MAL-2025-188805 Malicious code in prettier-plugin-markdown-lint-jest-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b4732bbd796f8b60aa6eaaab2fad1af9c69bb1acc6c805e0ccc202d281754d20 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190362 Malicious code in xenobiology-darkmatter-fermion-io (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b98aaed19411a873cd6ace71704b7552245706c937d1d0c567eacb7b6f27a492 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190323 Malicious code in wind-execute-authorize-mu-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1bce93345caea591cf340b36a60b30e9eaa3c806ef3f71fbbf3a81acb565f6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185991 Malicious code in callisto-meissa-centaurus-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f8c63a0c53777fe89eea8eda0c1a23ede7780098a6b51851bf39db32c4c98f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185652 Malicious code in auriga-uglify-js-repository-thuban (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ab98d3b4f9ec84b7cd785d48f45aea4d87df73373b865bf1f960aff6759d0fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186843 Malicious code in eslint-plugin-fornax-auth-dactyl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be26c82a94b33272a9b5391a0f7fe3a8cb9d572639e42301d598f6ff497f416c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187001 Malicious code in float-new-route-benchmark-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9665f090704f17656723a9e6b1d4effa056e5de0f4bdede25a8bf2cccf60faa1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189749 Malicious code in supercluster-grus-non-blocking-lepton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e73d9f265923611595f2bf95140778a1427bfc078db498e7da9874c1aba0f7d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187942 Malicious code in materialize-dotenv-safe-sublimation-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eefa120636cfd6f73b190f56220380ce77849e4a839a8559d1106992e1aa7d8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188707 Malicious code in pino-pretty-prettier-sequelize-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e3bde5720db4c2110dd2e282776b87cae97883f7ed7cd03ed524b7a0c027d9e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186283 Malicious code in configstore-eslint-config-celeste-archaeometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7ff2be312dbe53596418e1544834aeb2755f6a4464e54c7b5db9c56439d0aff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186020 Malicious code in castor-callisto-miranda-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 642a0e3b58478b1752d42ebe06e3728a14dd0d553d9e35c2c8bf429b0d2670e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187277 Malicious code in hapi-prosthetics-thermochronology-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3945b57156407a7defb56a483e3d506c0a307663ac840d78caefe669db00c55b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187490 Malicious code in inquirer-resonance-stratosphere-zenobia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8045888615086dcf573d963c334214b9b8cb76ab93a54114cae959a94c16ed66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186155 Malicious code in cladistics-geochemistry-vortex-panspermia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 654f488b9a4c4d95d757783d5812652e68474653dd0247b093552f6bf7e660e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189153 Malicious code in relay-development-update-semantic-release (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d662cd5ff8760a510c47e6ce2df1e9877f2621026be7db837ea4e53fcf873d18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186346 Malicious code in cosmochemistry-lacerta-magnetosphere-reveal-md (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08d0d5db9b30a391c486f37cb6ced3a4f296a525efa9c588f34a6a3845fe226e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190014 Malicious code in typeorm-csv-troposphere-socketio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e73547aa88679589280af7f97832cc643441c415a7b0c69aa00448db76023b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190316 Malicious code in wezen-xerxes-vortex-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 946bf71ee36457170ee49ec45ec813f62e10c9a664b58f862c83f7a5a43465a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188880 Malicious code in prosthetics-local-canopus-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3efdeea658b4d30cc033636cd337b88a3295df0119643f737b4b8fed468c07b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...