MAL-2025-188710 Malicious code in pino-pretty-yildun-express-graphql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 269ed87702f42dc45182c4c396bd4001c18e108c66d5f61fd4f3ac96adeee437 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186167 Malicious code in cli-mdx-galaxy-xenobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed70162841564f001e1b03f2943fded9e5dcebe6e7aacb659f89a4c999ac941a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189266 Malicious code in rollup-neptune-webdriver-manager-eslint-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9641ae1a94bc9e9e2736447da0d80427ac96de8cf3e3560ab39d02c7194a3db1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187453 Malicious code in index-load-rain-gamma-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d20949a738fe2df26f0b836a5b31063479b6418c708853c3d50f681b0d06dbc9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187682 Malicious code in key-kernel-transpile-test-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a52a484d28ce1ebc6b67317bba20eae6af92f4599233593aaa92ff14e137a0f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185644 Malicious code in augmentedreality-mesosphere-style-loader-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c1d853c7a12b620222d28136b0607993451c0a2b585bdb1e76a0f9f242509ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188345 Malicious code in notify-beta-tree-mock-minify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cd7b1d54a109d886470b1eb138564f487c08a552cb82b12abedc42d0adfc3a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186516 Malicious code in deimos-iota-luminescence-geochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2829516c5ce8615b2a59e4a46d3506efe33835b6b745515c481d71be3483605c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189264 Malicious code in rocket-polaris-prettier-schema (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b22e15bc048395a61f688ffa84069166c241328128e1fb0ab74bb9951a999d64 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186684 Malicious code in eigenstate-auriga-module-chromedriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 939bce452be9f38f47bf7adba1f04636244fa890ff50cdd36a91f3c3e80598d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190076 Malicious code in update-hadron-rehype-phoenix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f35ece84680d14ee5b47b141f5563546aeb735678836ac5514467735a7ed72c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186476 Malicious code in dagda-technocracy-commitlint-gacrux (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a5d983e33879369dd931cad741e8149906dfd91e5b8a8b102b534b4b2cea15f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189950 Malicious code in toml-slidev-nebula-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acc9ce901d26d00fd31e986b417688de1d5bf8b92f291024badd653d3d19808a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189559 Malicious code in soap-wasat-frontend-astroinformatics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 035f9ef7998b394d382afc13f9209220a634c21114f0432767956685d56e9cf2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190312 Malicious code in wezen-hexo-update-lithosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29b835942f6a8543c810550c04c687136135ae9e3c47b61eb95bd234b7c13caa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190354 Malicious code in xanthus-cosmiconfig-nightwatch-eridanus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72da61120c59c0bf43b0bcabd6f42a48b27ef2a01ff506bb7c55abd2b2b89c30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186903 Malicious code in exoplanet-genomics-thermosphere-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c3eb6aa62f0ef2efdeb2e5a6edc6dd0fc792ad8dd18cec6011451d9b9b53b6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190141 Malicious code in version-aquarius-run-script-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11a84d38a922a954fbee7f9e56c1959385eeb12bfe9493e598a5dce063b254ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187146 Malicious code in genomics-lightyear-mesosphere-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1443676fd94c32ffc79df6aede4df75f935ca9d1bc99e7c99bdeb9e440ebdd1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189275 Malicious code in rollup-plugin-optimize-css-assets-webpack-plugin-bootes-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a22361096be70425abad1a7efd5cf9876ee3807f16a6b9935376c78fcf0a8d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...