MAL-2025-189099 Malicious code in redgiant-callisto-altair-npm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c52623704e8e59183b20b689afbfb07d866c14348d1b2354d955944d41d54d68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189749 Malicious code in supercluster-grus-non-blocking-lepton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e73d9f265923611595f2bf95140778a1427bfc078db498e7da9874c1aba0f7d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187368 Malicious code in holography-hercules-janus-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc0747bbcd6e1cb7fbbcd0dc7b214cd578ce9437437d5ff92c3122cd217d7f36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189617 Malicious code in spectroscopy-dotenv-cassini-sedimentology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0877ae9987490da3e59673ad1d155843077b9fb9419c1942c74445d2543962a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187866 Malicious code in loop-quito-hyperion-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1026aa50dc1e0844d749d156395863d5338ea4214c14c836f4ac9d9e3515500 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186706 Malicious code in electron-tool-nashira-gemini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33b3527ef543cd69dc1b34fa0d37ad7afefd89e8a81e1a3ee9587b8811cac440 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187252 Malicious code in gulp-kinetic-mongodb-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7878006d6f8f7caa40ce0daf78b2c246cba2cc4a065213449dfa1b7d77e316f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187194 Malicious code in google-bionics-flare-biogeochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 721da62d8e5ecd0152fd394c7c4f7e74c17ca686615f02e8d31c07f1e323c48a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190323 Malicious code in wind-execute-authorize-mu-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1bce93345caea591cf340b36a60b30e9eaa3c806ef3f71fbbf3a81acb565f6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185793 Malicious code in betelgeuse-gammarayburst-puppeteer-rehype (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5130958447a541346c610348c14c00f249776c21a7f1dcc342652db121fd6f92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186562 Malicious code in deserialize-book-cloud-awk-finally (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13e29d51b7d8b9cd4caffa0769c0027c85af91ff8a9b069bbc6d9e639050ef36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188259 Malicious code in new-promise-compress-compress-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3261b6dfc0b0b95954bd9bbb403103d9c6d365e8c535d3e69bcb60b537fdab7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187075 Malicious code in futurology-fermiparadox-parsec-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7932b00db63a52a64e991976f6b489776b42c5b992ba035510f6778c3fcd33c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190182 Malicious code in void-oberon-supernova-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1662dd30a3bfdab50f06631023e83a010a07f87f264297ccff4a1f470029289c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186408 Malicious code in csrf-carina-technocracy-areology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9db0c04510fbe25f05f94fe0f96db201917b1ce0b47d780dffe69d15e1a1201f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189782 Malicious code in supervisor-slides-orbit-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89f9dbd94f494a24ef57e9ec19ecdf8c357feea71319d53b704f455240c03183 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190001 Malicious code in triton-radiant-epimetheus-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f37690579c85320317072d9cdc94e1053ebab4d6fe9f33c85656cc0bb9598f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186598 Malicious code in docusaurus-thermosphere-aquarius-rehype (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9cff65c97dcfbf5b82d994578654a3152ecc637488be528804a85e738be615d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189142 Malicious code in rehype-darkenergy-neptune-taphonomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff8e7dec04b1f7848c420cbc1d806bb0e2aaf9933831e68559c22c7c39a63051 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186642 Malicious code in draco-quasarjet-envconfig-technocracy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e035ec30a3e6a4899aece76133701fceaa81f84eb4de4b1f3e1a6500c33e84ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...