MAL-2025-190368 Malicious code in xenon-apex-ultra-zenith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d255eba690342099284d8bf8a8103b1b72404c253a39810bbe3abd1882f8030 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190042 Malicious code in umbriel-ariel-rigel-metalsmith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5c72945619dda01a368dfe59be292a5a07f66cf7ed86d55dc924a54ff02d902 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187699 Malicious code in koa-eslint-plugin-corvus-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9921124b23b8c3333632e1a5ad8852823bbc42e2f37bc4ab4272265763d84cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188605 Malicious code in pegasus-resolvers-leda-mechatronics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d7ee621db29267361daf2de5c6753f45be5ac273e82412dc7ce548125410862 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188526 Malicious code in paleomagnetism-levels-rocket-dependencies (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac6239ea4745b7e2cbf904de78f70e9f3f56989717525f63879e5b541bc276dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185532 Malicious code in archaeometry-airbnb-mira-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58048d67db0cef8fce7a3b4037d8696098f4aa0f7bfa02aae2be59d7ab5b6049 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189478 Malicious code in short-easy-cat-mock-daemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7dc557c2e409230293cd798f07cbaedb448573af8880b9f57c7d82c8d0e77c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189873 Malicious code in terser-webpack-plugin-delphinus-membrane-cryovolcano (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83f1fbd056f464401107ffa949a75c56dc9110b1b201fa564b844e813212402a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188388 Malicious code in octans-cybernetics-carpo-norma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21ccceeb81b50f8697417fb024032614df089a3bf9fcca910299ef4ed8c3a23b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188614 Malicious code in permission-permission-link-monitor-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5d431a409565d9e8eeb792724e8d57bd258eeffbb797a03748a52fa0965af76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190222 Malicious code in warp-hyperion-quasar-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ce712bcaa7250178e1c74d3981affc85be58ccdcbbe4747eb57092b766b7c04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188947 Malicious code in publish-ichnology-eslint-config-luna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1632875bdcfe6f85b8d1e6bf0269dfd2a2eb7755789677cf74531f47a7a1d82b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188310 Malicious code in node-config-private-zenobia-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c726f498d965d5ca0aa4bf03817a0858351167b13332a7cedf47df996d3a0ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189617 Malicious code in spectroscopy-dotenv-cassini-sedimentology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0877ae9987490da3e59673ad1d155843077b9fb9419c1942c74445d2543962a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186442 Malicious code in cygnus-tool-update-xenos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e6dda9b734db336089ca3b7e1b189859e059a4a50e2263aa85436870537b513 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189544 Malicious code in slow-promise-delta-root-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 978db9873fd5163d504d6dcef0b180a56a9a49e2c99ee402c0549f5d2eb165d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187245 Malicious code in grus-pipe-websockets-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e908ab5a9f1588062bc9ccd9e3447dc656308f6a5f76ad9232116d8165cebad8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186496 Malicious code in debug-container-zeta-load-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c066f1f70682712ef0317f6958763b00dc3f36c2f09ae739d4f22feb94c69d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186624 Malicious code in dotenv-safe-parsec-soap-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e893f8ea331585741d2e799fca6e6967bc3995df4fbfe523ae985a21231bd8c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185916 Malicious code in browserify-nodemon-proxima-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f8fe0178708beab3a0e8eecf0b864a676279dca80cabc51fa9d0f1f2d2579c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...