MAL-2025-189369 Malicious code in scale-deserialize-function-optimize-hot (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc14d89c9ce2065dbff31482a95cff1fcbe19a77c703a1f8a4e9da899b874f14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190285 Malicious code in webdriverio-vuetify-antares-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec458e52a9b2de78104cd2be4d4519b5b8c449a2cbcc9ea5ba651143ee5dc1e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in configstore-centaurus-writable-express (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b4d2836adf3fb394b565c00ce08f4b87b9bb6ed7d0f8a9228fcd46d24a9735d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in metalsmith-eslint-plugin-proxima-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a089256b968987b9ce2f7f33576c538fe8a9fb310484093972dafcc4d21ec29 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in technocracy-neptunology-entanglement-whitedwarf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a714060d334a3130ad7599f72fbbeacd26069ba90c6a06c2bd81ea9eedcf8e07 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187856 Malicious code in long-class-report-grep-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c531eb996fac38a8cea19ed3fe4e78e127323d14b9f80d1cd2edf596cad55e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186456 Malicious code in cz-conventional-changelog-selenium-xanadu-enif (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cf8b961eeba9da8ef4f127b78faa308dd817dfdaa64410081587bb7108e7317 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189144 Malicious code in rehype-mesosphere-orbit-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2e28a6ef17ceb60bba6aa7f7aa38fe00aeb2d6a8cebd70653412a6507744772 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187810 Malicious code in lint-nuxtjs-babel-socketio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a8611eb2223c19e3229ffc9e93992299b19a837631cc58ec018759f33681b70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189595 Malicious code in spawn-exec-zenobia-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08d195fec77b588ee50726619249d1d77aacd06b4a03966370f3dee0c6edc02d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185406 Malicious code in airbnb-australis-inflation-changelog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08ecd16b89921defad1c9b79583eedf00225da0e26f2f98dc7a866f52c72ec13 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188780 Malicious code in postcss-loader-hapi-publish-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f30a4b6ed232f3a0f88e9b315c00447a3e16a47c406a885a51e8efb67a3253d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187615 Malicious code in joviology-betelgeuse-saturnology-webdriverio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34d254b9514fd3339b54435bc06e5048cce06aa32590ea9021ad1e864405463a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187940 Malicious code in materialize-cache-neptune-cosmogenic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85ce0c130492aae3151f1a9569559e73ddc5670f78a3a142e9f6824e03610e1a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188601 Malicious code in pegasus-parcel-gravity-cassini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e7c77592ddbb2a0c217090e29a01954c5a286d43b507212a97f05b41da1e3e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190051 Malicious code in umbriel-transform-corvus-request (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba0535ab8475a2cfe19c1ada68feab5732883367dc7554d2a673d0616d955ddf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185520 Malicious code in archaeoastronomy-epigenetics-proteomics-request (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eccf235d07fb5b9150ec0c3ed8014227de1a1e59d4cd9643a3a785690ca480b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190300 Malicious code in weywot-less-meteor-jupiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8542102f9f4ae3b048464b926a5ab26eb49cd534e4e12a528ad808d7a291bd1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190461 Malicious code in zephyr-dotenv-technosignature-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6c213aacdb33c9710b0725f1700b663eb0a518bce1ee299951a5d392aa2e9a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189512 Malicious code in sirius-astroinformatics-ursa-futurology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5945199d76fb43c98512cc0d420376ec81e5fba1228e737d3b251245f1c13f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...