MAL-2025-187925 Malicious code in markdown-electron-europa-markdownlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da241035c8c6043578692ac4ee05dd47f6b4d6d0a9301ddc80f8497055acb487 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189960 Malicious code in tool-webdriver-mocha-prettier-axios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0202e0c6d5116df45f3fbcb466f9f4469417db5a0a3a8c2d51725d491a76e674 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186903 Malicious code in exoplanet-genomics-thermosphere-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c3eb6aa62f0ef2efdeb2e5a6edc6dd0fc792ad8dd18cec6011451d9b9b53b6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185890 Malicious code in bootstrap-futurology-bootstrap-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b104189a74b27deed81a647b36a22f7fbca02dfd1483495bc1805ff2b673e36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190207 Malicious code in vulcan-quasar-prettier-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9565ba49afcf1a59bba550526acc4bf8556d6fb903b6c4f4e3ee0b7f79d2944a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187393 Malicious code in husky-eridanus-quasar-geckodriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19e89051fac6b87ecbec90f9d80c101f8f3a1d9fe8faf531046b922f215b64a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187584 Malicious code in janus-rocket-crust-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57d68df4dd0ef3941fc01f5427a525386ddef1adb2f0de27c41bda77a6971c9f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187682 Malicious code in key-kernel-transpile-test-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a52a484d28ce1ebc6b67317bba20eae6af92f4599233593aaa92ff14e137a0f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187453 Malicious code in index-load-rain-gamma-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d20949a738fe2df26f0b836a5b31063479b6418c708853c3d50f681b0d06dbc9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185644 Malicious code in augmentedreality-mesosphere-style-loader-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c1d853c7a12b620222d28136b0607993451c0a2b585bdb1e76a0f9f242509ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186958 Malicious code in fetch-charon-callisto-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62550fec98515505f3376660a176a2b13482b88711b0022c9925a9b825e4fb36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186636 Malicious code in double-uglify-long-static-cron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86cbddf969fda2c0a80a2252a875d61720e0aa7aa2b2a5725fd102e01d1f0c6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186167 Malicious code in cli-mdx-galaxy-xenobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed70162841564f001e1b03f2943fded9e5dcebe6e7aacb659f89a4c999ac941a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188107 Malicious code in mongodb-cz-conventional-changelog-rollup-plugin-biosignature (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b32ece2ef7ce06b92f4ca3800ffeba375ee8a9902c3e47cb0f2dbb8ad0cc57d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187638 Malicious code in juno-saturnology-sass-loader-joviology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector beb54e9749d9d21998cf67910838ec70d40b9d045cee981abefd69fed26a290d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189266 Malicious code in rollup-neptune-webdriver-manager-eslint-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9641ae1a94bc9e9e2736447da0d80427ac96de8cf3e3560ab39d02c7194a3db1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185439 Malicious code in alphard-fetch-electron-builder-levels (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e9630f529c3a2decf0296dc89c233694d4d75a41419bdca5403cc0224582f52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186398 Malicious code in cryonics-publish-dactyl-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8e8225eeaac0b8916a2b89b7dcf39e7988138e6e430c4f6a4730306f251bdfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188061 Malicious code in mira-pino-impulse-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97a1147eb997379acf6a6c10728cc952cf4d610b234389989f89effcc5486ffd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187189 Malicious code in good-bundle-scale-grid-load (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecb5f25a8c7a4ab999302de7e1d4276c98a195b7ab0c46c098583f229a388426 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...