MAL-2025-185430 Malicious code in algol-troposphere-bellatrix-oortcloud (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88490cdb1401356b32291487c355209f19652c109aee91f3a7950f1f3937bc04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186114 Malicious code in changelog-polaris-dotenv-safe-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c814b7fc8dab99055234c78d4948e54d8ffe37e73c7373184c2033064d60c451 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186310 Malicious code in cordelia-zenith-ganymede-mutation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c52cc7a0b5ee7ab3c856d1daa1a376b8b8524151fc4f7a6b66551f0059afb40c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188959 Malicious code in publish-thermosphere-native-cosmochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08733e15229a1239113f215e451e962f1636c3a17c93fe577a05f7db2482bfba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187663 Malicious code in kardashevscale-despina-outercore-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0de6b9990c28eb85eb681e249c774309fe5af020b547772d4a804dfc7fc3e99c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186288 Malicious code in configstore-quark-sync-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30c3b67083ef101f23672989003756131308861e71de005811d2edde2b5f3f8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190116 Malicious code in ursa-readable-astrophysics-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc80f1b9c5c521714bd2e80e2a6b16e345cc954db76ce53bf0af5041f30f670b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186175 Malicious code in cloud-user-static-promise-stub (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d787f6189bc96274381f7572cc6423c6e4d61f53808ec5322dafced3748a3f0b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190146 Malicious code in version-virtualreality-scorpius-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2474968d15e1ae15d7fe3d765d5e06ca8d713e82add09b6ddc4d7083cda699b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188552 Malicious code in parallax-chakra-ui-cybernetics-unuk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3dc8a5105d982a9f1cce71004505af3c846f385a2b34a35bd91283b0aaf5c9ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190170 Malicious code in visualize-cache-web-float-slow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3f7f24dadcead52f45d3b13c1e58579d94e0015bb0a26dfefe06ac153a45caa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189650 Malicious code in standard-saturnology-webpack-pm2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60f9b60bcea24bd37bf4185adb3a50def239cd1d9c430419b55ef63fb70068b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186607 Malicious code in dorado-hydrogeology-zooarchaeology-regulus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84cb81d2f9006de02c80f2639b15652a181f70f10b8472afa9f18e90b375cd59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187220 Malicious code in greatfilter-greatfilter-kastra-eslint-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6aaa89df8927946010667fcd1917704d7b1e9657c9426eb3b312c527b34c8896 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187530 Malicious code in ionosphere-webdriverio-module-primatology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cacb870c31bd3d8e50ddeef025ab57d87c7da78f744eab59b8ed9e85e16b1d46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185364 Malicious code in ablation-semantic-ui-readable-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deb999c04b781769ca44990d467de461dd690a88b83be66c974ada6a559b8a19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189356 Malicious code in sass-loader-lepton-nebula-virgo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a989216a806f4fc710f35ceecc76f72ebca9e42cdda321d10df6910124e480d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188899 Malicious code in protractor-hercules-xenos-webdriverio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29d84f5886e98b783c79bf948e8dc881b642d93250a3318b5a585f4336a1d038 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187250 Malicious code in gulp-cluster-hermes-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b75be2e9a1f4408daffb548607099533dca2e521294c032121214e57670fec67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189665 Malicious code in steganography-aether-on-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a82bcf9484d0efd576c49a8f70274e7b0f9d424b9ac8f7f2c024d1aa3911a92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...