MAL-2025-185715 Malicious code in axios-neutrino-fomalhaut-perturbation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f428902c9048480558a598f879ec355d21f923763d3b297f190013b90c371cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190091 Malicious code in upsilon-decode-long-socket-final (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0962f6e8da2e588484b33fb5c75f660402e645c56187e064048d31ee6b4a4e7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187432 Malicious code in import-benchmark-warn-node-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24561d64b8cda186bb2d88f82638fb3bbc75befb15a7a94728acd63a9b4ddfac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187813 Malicious code in lint-staged-inquirer-transport-hawkingradiation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfbb20d4bd0ecb369e109ab32d36b1f7d0610fb45df7d23e8f9bbf0db5f3c22e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188552 Malicious code in parallax-chakra-ui-cybernetics-unuk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3dc8a5105d982a9f1cce71004505af3c846f385a2b34a35bd91283b0aaf5c9ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190116 Malicious code in ursa-readable-astrophysics-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc80f1b9c5c521714bd2e80e2a6b16e345cc954db76ce53bf0af5041f30f670b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187949 Malicious code in mdx-callisto-multiverse-achernar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3374948137016d0fbfe8d61be9db1108f9bd36e373e2755a997e3a2e83819f2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189017 Malicious code in quark-dorado-ethology-loglevel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9270626698c8706953e8ddc2fe61d99577497576cc954a81c95ae6ad4a0c625 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189273 Malicious code in rollup-plugin-loglevel-archaeoastronomy-on (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ae1d18ecda3a4a15013d21d522f0598cfc55b2f622436d4550842dd4870a5d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186193 Malicious code in code-code-old-reject-cat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c899170e707048f7a4cca5c47d5b69c5e973289a723f30a8f0ca015ae5d82005 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190459 Malicious code in zephyr-auriga-node-config-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 501e4d8965e877980be3f3890f728502f5d0980ab23ca42e8fb0f60097b5f6cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187322 Malicious code in helmet-blitz-izar-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7274aac6f97ba8fd1f45ebb661eb0379a9e13bb52fc4ca45314725f2352ed531 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185867 Malicious code in blueshift-standard-altair-higgs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2495eefe689d12164788cd5f8932194479b7babae1155e232d3b3ff8d369fa2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187942 Malicious code in materialize-dotenv-safe-sublimation-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eefa120636cfd6f73b190f56220380ce77849e4a839a8559d1106992e1aa7d8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186985 Malicious code in finally-stack-error-cold-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 851d0023f1b630511561a3a8277fcd85b55a566b9ea984b4ba5f4e35d51eb296 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188129 Malicious code in morgan-sass-loader-release-it-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c153eb6fd6cc614dab9d8fd43c3d5a0e5258e9ae6ddd573ad103e2a78cdf4f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188730 Malicious code in planckscale-lynx-global-transform (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d3a6f504f1e5767dfec6a0695658c17cb181816e481c901e238aa4397ec5924 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188528 Malicious code in paleomagnetism-nightmare-radiant-hologram (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40ebc12787559b7d7eef63fc5cd7c191164484a02a9e5d88f09f05d350422018 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186881 Malicious code in eventhoriz-native-planckscale-cosmochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1da3fc7db81f4f6607a2fbdcf5a7717de5cc4c1f1f869bb3a677def9b158df3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185455 Malicious code in andromeda-grus-leda-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ba83b5896b11f8a71f9cc0fbd13f3202cf4c74871a3ce8a9288b34209bd629a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...