MAL-2025-187254 Malicious code in gulp-parcel-bioinformatics-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e954d5023f3652da9264a4ff04b69f8bb31573498561742734a9118e944fb11b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187903 Malicious code in magellan-gravity-solarnebula-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3462e73d45c74f94a7ed03e5a2684f899b513c79d7d44b35e47dbfbcdbd206b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187997 Malicious code in meta-code-debug-key-old (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c44349ff42d4f48dca55e6eede52c18fd580f1050b7cfe7ef57d36b8602a3fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187926 Malicious code in markdown-less-loader-joviology-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b33abc594c11799681690ea35aba4b890aa18ea246a46a6bb82181059f49618 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185893 Malicious code in bootstrap-solis-bulma-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd3c4b90b728e10c24b350f3bbaa8da21ea46f25f548e1c3a7dbb67672704c24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190355 Malicious code in xanthus-dotenv-safe-markdownlint-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65059d3c138e66e932e624190cf09688f2f69178722bd6940b7cd7ebdb558347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185780 Malicious code in beta-error-rho-authenticate-tree (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30cc2769230687e6e7eada5a89a33afaecb48c332be1d59dc5e4f2b0ba46f3f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185516 Malicious code in aquarius-relay-pulsar-eslint-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67d6ae11b1b219ec043fde6f59f5ffa676d68e76745da39cdef38ec9ec99813e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189664 Malicious code in static-view-warn-cluster-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8959878fc66db7bfa787bb8fb77224a14a0c6f77599a8ba842e95e295d4466b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tachyon-mesosphere-spinner-pm2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0199d4ad6da5ed57f1010cac95dc16558ece4d84ae6e6c6fb857dc52e6c6370 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188899 Malicious code in protractor-hercules-xenos-webdriverio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29d84f5886e98b783c79bf948e8dc881b642d93250a3318b5a585f4336a1d038 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189067 Malicious code in radioastronomy-readable-proxima-sadr (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12c1e2c1751d0b64e7e0b20911f9d0aa01575ad4dd030df8d55c2f0a5387bded This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186690 Malicious code in eigenstate-spectron-loopback-wormhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0460ccbfd41e51a0714ef69bd00401d3487ca8ab7f70a90e0377723fddd725c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187825 Malicious code in lithosphere-pegasus-jest-paleoecology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fac9378ba65444786e230b66d8117785b3cbf66c7c6c667007647fd65d49e95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187115 Malicious code in ganymede-volcanology-meteor-andromeda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 439f5aeded04421261b5e44959256e95a019859e49ea507d43c2521ec92cdfb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189514 Malicious code in sirius-darkenergy-selenium-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d8a88c1473d6d62a4e97fff41207584a1a760e37bfae59d36105075e63250f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187844 Malicious code in log-cron-execute-small-signal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 32ec0696cddf358459e6b9b0aec5b76429e12fa22f595e5ae35b4eb9f8182d61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189131 Malicious code in registry-relay-electron-builder-vuetify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a67c1995ab1976896034e028ee640c5ae740b13db01b79296b2487d4d3fcf022 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189146 Malicious code in reject-await-hash-try-try (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 623d2820b9969642342638ffdc496c9ef3853f209f297e48f6c68e39d9ce22e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186881 Malicious code in eventhoriz-native-planckscale-cosmochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1da3fc7db81f4f6607a2fbdcf5a7717de5cc4c1f1f869bb3a677def9b158df3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...