MAL-2025-185984 Malicious code in callback-zephyr-semantic-ui-carpo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc3ae303ee981c1075c7fce2279b092cf996dc5af84dcd3a3fbe2c0c2f2810e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187171 Malicious code in glaciology-kinetic-paleoclimatology-helmet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e336bb8d16c009de8df8dfcdec5370d296fb90defebf9631d180d7af50f8fcc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186560 Malicious code in deploy-good-data-double-unix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9f539fb8f3d51fa364bbc575962a64190641a7845e4ad288836f916b9fe9df7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189812 Malicious code in tardigrade-perseus-scripts-csrf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38cf3002a682a40e9db25a7ab21c0c0d43bc2a7a7b6565671c25154c0976ea30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185975 Malicious code in callback-fomalhaut-slidev-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6530e7d524ba18030b212aec51ecb2bc02efc16da675b6d3b84232396518dcf2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189126 Malicious code in registry-firebase-bunyan-prettier (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82d9b7fc7f6514023a049e5263cfac52ab080b751f5f9d2fad7965815713cab6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186328 Malicious code in cosmiconfig-deimos-kaus-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b417397ddce4e37930565b0788e7a53a679b19a15884a94a966067146ae2b85 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187781 Malicious code in library-nebula-rest-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79ba74e4d265a0cd7cf0b173712f28c7ddd0af4de4fa9cd301c0208b5d3e55be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185431 Malicious code in alpha-authenticate-serialize-long-try (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 199def465b170141e797244332a927dcb36e3ae277b1a2ef1f33c77fd984bd0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186450 Malicious code in cypress-procyon-neptune-epigenetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e2913afaa34955cc3427e4afa8d9aa00515de6fd22785137fec6b00482eac91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190431 Malicious code in yildun-blitz-miranda-accretion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9aa6adbd171001d6774e9c0faf6981e1b8230bc776079be2918fc0071a823fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186044 Malicious code in celeste-selenology-socketio-carpo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3b0922b492f0634fa8fa4185e4b832fcc9ec8b78b6a8021ba713ef2be87ed22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189684 Malicious code in stream-indus-dendrochronology-run-script (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fcdf9efe1fac494c78e0dc753729d3c091e5206d94dfa78e6b2352c83e1ddc9c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185973 Malicious code in callback-dynamo-lacerta-chakra-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6d300878b315b706f8527cf43747b70cde297845c6d57fd85b3a93e8b1d283a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185355 Malicious code in abiogenesis-cli-tachyon-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3731d79580a9a1a452610b6a842f4635104e983316a54b1cf97ef46f6b025b4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189669 Malicious code in stop-auth-epigenetics-neutronstar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d97778258cae0aa68e642d04d7a813ecbb7fe5274fe3d46b749e45ffebf87170 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188506 Malicious code in paleoclimatology-cosmogenic-crust-kardashevscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00e15ddb8489db7af6fbf7562f37b8fc6a58192ece39405003e76501af3efbeb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185503 Malicious code in apollo-geochronology-stream-readable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1853cf9a3f20a918e290a6d47a2239df7fb6e98aac8909d1af2210c7b228b0b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186518 Malicious code in deimos-phoenix-impulse-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbbfcd766b1ca1c62a132b5ea15ea096166acfd3fa7ec76d70d8f3145d6f817a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187821 Malicious code in lithosphere-changelog-grunt-uglify-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4b28e3e1e6b068cb69bf52bc1258cb4b9e14b392caba44b8a421e3b654326c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...