MAL-2025-187075 Malicious code in futurology-fermiparadox-parsec-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7932b00db63a52a64e991976f6b489776b42c5b992ba035510f6778c3fcd33c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187320 Malicious code in helios-webdriver-mocha-superposition-phylogenetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7fa52991d1dbcd2f6889af5503b80d384df7b867c03de23959b38644f8ce0cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187189 Malicious code in good-bundle-scale-grid-load (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecb5f25a8c7a4ab999302de7e1d4276c98a195b7ab0c46c098583f229a388426 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186218 Malicious code in comet-oauth-airbnb-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d9fb8279f61223224e9fbdc329b569ad93d0e71610a041f12d1cb85156c9a10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185852 Malicious code in blaze-farout-module-transport (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4192d7aeef77906c60bb34e7bc30349a3cf23117c8fc3d3afb6d6a2a96bae8d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188259 Malicious code in new-promise-compress-compress-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3261b6dfc0b0b95954bd9bbb403103d9c6d365e8c535d3e69bcb60b537fdab7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189665 Malicious code in steganography-aether-on-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a82bcf9484d0efd576c49a8f70274e7b0f9d424b9ac8f7f2c024d1aa3911a92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186208 Malicious code in colors-rigel-bellatrix-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c137eaed40b31b6152069e498b6ba1512a5e4a72eca57a6d5eaed47da47afb55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187194 Malicious code in google-bionics-flare-biogeochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 721da62d8e5ecd0152fd394c7c4f7e74c17ca686615f02e8d31c07f1e323c48a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185528 Malicious code in archaeogenetics-tardigrade-filament-boson (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9224028552e3b7dfa507b6d9c04414e4fc7c9633163fa4ca6c51bf465fb5ef0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185893 Malicious code in bootstrap-solis-bulma-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd3c4b90b728e10c24b350f3bbaa8da21ea46f25f548e1c3a7dbb67672704c24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187245 Malicious code in grus-pipe-websockets-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e908ab5a9f1588062bc9ccd9e3447dc656308f6a5f76ad9232116d8165cebad8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187825 Malicious code in lithosphere-pegasus-jest-paleoecology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fac9378ba65444786e230b66d8117785b3cbf66c7c6c667007647fd65d49e95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188535 Malicious code in paleontology-mensa-altair-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77a633c6b86cac2930385f3eebdca63ae10a81cf8d77661d33d82855cd92e570 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186740 Malicious code in encode-rain-refactor-execute-pi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06ee24f91b8cf6e03f7269a7f2c713ec12a15e887c78c0ea82e730ed28149481 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186635 Malicious code in double-rain-protected-import-monitor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8581e04e65ec57750c45a77518bc0bde32027cce7cec3092673048972abc390a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187196 Malicious code in google-radiant-weywot-rocket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90c66e0686c4618a725de20e95e6ce1715c68327b6ccc280c359a1139312e4a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188122 Malicious code in moon-small-nu-rain-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fcf2a1dc5076c624ca43163bb493e90fd98998b7c3805d3aa5c9f1f5817c3db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189348 Malicious code in sanitize-module-pi-code-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ede5ca909182567ae828158a0cfecdece92da6f9f59062cc498e698ab9cb46c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187113 Malicious code in ganymede-style-loader-xanthus-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36a5f45d9564f44b2db677d8a064664c3950bbf58615506c9507134b1044b3ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...