MAL-2025-189034 Malicious code in quasar-robotics-soap-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf869e7625d64431a49efb119397803362e8d03292cfed0a621e19d3d58e102a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189179 Malicious code in report-easy-fast-star-grep (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08e344a2c581a34f772f67b04c94121c2f5eac9b9db0669af25db99e4c58e086 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189466 Malicious code in server-redis-umbra-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70ad1596bcc3e80829a1c46d11fe776c209f88cc4388e02ed286d6ad1976e9e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187423 Malicious code in ignite-callback-cosmochemistry-paleobotany (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f4aedcf4678e453f6fbdfd6adbf5945076be8b34eb44f5e0b9fb8ff3244b536 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185411 Malicious code in airbnb-test-betelgeuse-gridsome (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34f8c54d1cf82e48e21e0919c55c28945ae75a22c803ff46452fbae803bdfe1b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189001 Malicious code in quantum-darkmatter-native-schema (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df4b7d2e949c0c56d06fd440de24261c533ae34fa972d0a9fb8cd3cce716c207 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189273 Malicious code in rollup-plugin-loglevel-archaeoastronomy-on (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ae1d18ecda3a4a15013d21d522f0598cfc55b2f622436d4550842dd4870a5d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189388 Malicious code in scripts-jabbah-apollo-phenomic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b5ee5da379e5c309f399f54e4cabd154042bb01dbcf1183ea02d2fd6c98bb71 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186973 Malicious code in filament-thuban-global-volcanology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f73f5c55ef7dd797fac9a3ff2fa06aa2cecac5d2db7aa246d25bc7bb936601ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188015 Malicious code in meteor-cache-fomalhaut-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0462fe49c99304144ad4d9f3b517e441c06daad585939395d80b64f71ac5e537 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186406 Malicious code in csrf-bootes-html-webpack-plugin-ichnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42e683c14d1e59c58cadcd514400f46ff49670101cb068cc2ecf1d95b413dcf9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185528 Malicious code in archaeogenetics-tardigrade-filament-boson (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9224028552e3b7dfa507b6d9c04414e4fc7c9633163fa4ca6c51bf465fb5ef0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190008 Malicious code in try-benchmark-assert-module-protected (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de000d26f24e3e19f3f26d9ae4f37d14f920af6a5f0e283d3985c12f1414f4db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188658 Malicious code in phenomic-prettier-stylelint-development-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98e01e9e7bd3ca58db60522d781d1eb1d5bbd8fc4776327cf8da1a38e112b2cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189153 Malicious code in relay-development-update-semantic-release (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d662cd5ff8760a510c47e6ce2df1e9877f2621026be7db837ea4e53fcf873d18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190014 Malicious code in typeorm-csv-troposphere-socketio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e73547aa88679589280af7f97832cc643441c415a7b0c69aa00448db76023b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190316 Malicious code in wezen-xerxes-vortex-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 946bf71ee36457170ee49ec45ec813f62e10c9a664b58f862c83f7a5a43465a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188880 Malicious code in prosthetics-local-canopus-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3efdeea658b4d30cc033636cd337b88a3295df0119643f737b4b8fed468c07b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189392 Malicious code in scripts-thermochronology-corvus-stop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7d97d8fcc23f2d346ea5f3bb4b8adde7292e0f4e5cf025f1571af324ba517cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187038 Malicious code in fornax-transport-webdriver-manager-carpo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 221b0df03709f994b5ba17d503c03bd119a376ef0490fc537e74dc1413048ccf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...