MAL-2025-187061 Malicious code in fusion-eigenstate-install-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad639da6e793d2159b795fb19d5682182fa5314233b975d0b111b1a6bd1dec65 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186726 Malicious code in emulate-tau-grep-resolve-decompress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 537111f2ce71d83f483cdf19d12bda80c8b9dbbb1a5081022d1fdbd029694e33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190441 Malicious code in yonder-sedna-innercore-slidev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 235087749a464cd5d6b6c22ced79614476b2f65285a4ec733bc5e779af8e4a45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186246 Malicious code in commitlint-chalk-eclipse-init (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b08cb43ec4ac2e4a214da7f273798b819d8970ac0a947c0225b6f9a4d62c83b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188581 Malicious code in passport-selenium-terser-webpack-plugin-juno (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 602abed684a5ea387f7fc7198fa8757800994812e6e03ff63712b6dbbfb3e1af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186203 Malicious code in colors-eventhoriz-react-bootstrap-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa0400d978fa965e52d12202d981d0a00f84aed877346a6ddbd17443b12575da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189626 Malicious code in spinner-cryptography-acamar-elara (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1062828bf86ee46897b6ec3fdad22b6f8d2f28a798fbc38016d478935ff78ca2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190489 Malicious code in zooarchaeology-nodemon-semantic-release-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc86611ecc1d408557ed31ce6290315bef498929933479df9f8045b837679a11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190137 Malicious code in venus-dactyl-publish-markdownlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00e0885c4752a431d7ef0c7c486161540c316f43b132e783036e81bac58c1dc9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188990 Malicious code in pyxis-hercules-scripts-request (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6a81f666995ddc6c6187d95530b91ea605e66fd4709f426879c3d30977691f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187706 Malicious code in kronos-inquirer-promise-dactyl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 061924477c364a15646e4464bbe03fb996300c139bfe1c00cc40eef390aa71a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187192 Malicious code in good-minify-private-container-object (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b032c4996d44ce62c30eba2b2781375d7b3c99daea21c2cbf85535105cb6269 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189610 Malicious code in spectron-mini-css-extract-plugin-enif-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77bf4632685f048e884c1d50e6b8ad6399db3c7078098bf8b61b8d61dd7d4b35 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186707 Malicious code in elektra-bellatrix-neutronstar-spinner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c4f90b5692e853c91bc5bf63fb6ee8aca89c7b606140be3793dc608467693e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187189 Malicious code in good-bundle-scale-grid-load (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecb5f25a8c7a4ab999302de7e1d4276c98a195b7ab0c46c098583f229a388426 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185454 Malicious code in analyze-signal-bundle-query-mock (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e9ac109472152832caa800b02a3b34b918e75736ec1e24c065add9391558992 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188999 Malicious code in quantum-computing-server-phenomic-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e4eaeb6ca6f3e7e8583b6325db4dc2405956f5cf99b5fea3fa0a71ec3990d93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189615 Malicious code in spectron-webdriver-commitlint-apollo-mysql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2f9393dc8a7a4eaa19f6f45d6cfee1f7b390f6d38c9d5c9e9a13032f53e195c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186765 Malicious code in enum-interface-grep-reject-debug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9747adeee551e390a70f8a76ee111fb487d01e20f50b884d50ee6cbe5e0d4f3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189595 Malicious code in spawn-exec-zenobia-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08d195fec77b588ee50726619249d1d77aacd06b4a03966370f3dee0c6edc02d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...