MAL-2025-186128 Malicious code in chariklo-library-public-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa536a5e403d931475f9787e1461256bb925caed3c743de48b475db4b9bb1938 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186484 Malicious code in darkenergy-style-loader-style-loader-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b63bf79b92c5f6a95a6dce7dc164aa540cba55e4dccae81f7f45965620fdf7ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186403 Malicious code in cryptography-cross-env-google-yildun (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 919e037d7178bbdc5cbd024f17c6cf5bb23091ba301945f2431560076af9bd8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190146 Malicious code in version-virtualreality-scorpius-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2474968d15e1ae15d7fe3d765d5e06ca8d713e82add09b6ddc4d7083cda699b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187194 Malicious code in google-bionics-flare-biogeochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 721da62d8e5ecd0152fd394c7c4f7e74c17ca686615f02e8d31c07f1e323c48a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187928 Malicious code in markdown-nconf-string-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8074d92510a28e3e6b1da7ca41610927761684bad1dbfcb169033072bdcd11ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186491 Malicious code in data-node-sanitize-balance-optimize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acb8d9703abe39cfefbc8d1d34c0ba97b94086751ef2aac885f5688de093b8bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190317 Malicious code in whitedwarf-fomalhaut-nodemon-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 485383a1d4793fa4e99c507b8c6475dfc9bc9e56e6433a5eb09c6255405a640d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185355 Malicious code in abiogenesis-cli-tachyon-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3731d79580a9a1a452610b6a842f4635104e983316a54b1cf97ef46f6b025b4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187866 Malicious code in loop-quito-hyperion-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1026aa50dc1e0844d749d156395863d5338ea4214c14c836f4ac9d9e3515500 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185875 Malicious code in book-web-deploy-object-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e707ee8e6a7b157de7f049f46c37a2f9de5d01555279c9b19fe13e51bff46327 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187806 Malicious code in lint-janus-juno-blueshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09c4d24d6c0937c0a916af5b388852eb2c5e7fb318480dba1e23ab03c3047296 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188526 Malicious code in paleomagnetism-levels-rocket-dependencies (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac6239ea4745b7e2cbf904de78f70e9f3f56989717525f63879e5b541bc276dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187974 Malicious code in meissa-perseus-eslint-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e806cff752234b07a544f7a82097f1f529d1e1a23d1d6276aab2245ee0cc70cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186746 Malicious code in encrypt-public-delta-chi-query (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d0273e011f95f5c7bd83382e4643a9ef8f11d463f954e2ce4c19617e1bd63c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189591 Malicious code in solis-semantic-release-pm2-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25f3fbcd8cfd3f79b4077a30db2336a9949bd3aed84da84464d9498779874eb6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187579 Malicious code in janus-radiant-avior-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3482009acb57d79c98b331584817b5b1aa0eebce9c890bfefe12f45ffe90242 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185862 Malicious code in blueshift-exoplanet-buffer-primatology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d143c1c5b2aab61f831840778fd5711d8bdbdd3009b39af1830df9580dbe9f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187954 Malicious code in mdx-kaus-browserify-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c35c481bdc9c3cd04791a4bd2aea3c97faf1ab41752bdeaa06954b53da493801 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186450 Malicious code in cypress-procyon-neptune-epigenetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e2913afaa34955cc3427e4afa8d9aa00515de6fd22785137fec6b00482eac91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...