MAL-2025-187375 Malicious code in html-webpack-plugin-multiverse-proteomics-blackhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f04dd975db833fdc723e01450c24356d92668375df821a448e8323c02bf11fd6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187241 Malicious code in grus-crust-greatfilter-holography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a838db28e4304c090d7abff45df6991037bf045cae83f8cec95623bbcf772a9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186344 Malicious code in cosmicweb-sedimentology-ignite-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 244a8086b97b3e59695f91b83a0a171f8762ba34756d6ee338d98344eb1b1b05 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189035 Malicious code in quasarjet-cluster-ionosphere-eslint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0335cb0d12622e1f9f0076cdcad521feb0e990280876f4d6ac17052fb3f76185 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187231 Malicious code in grep-zero-sigma-log-big (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 020bdc661008d1ca86daa3eb62afcbdecc07a425fb2f82320f1bdba3b5c51f46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190461 Malicious code in zephyr-dotenv-technosignature-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6c213aacdb33c9710b0725f1700b663eb0a518bce1ee299951a5d392aa2e9a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187338 Malicious code in hercules-pyxis-rehype-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6bd5be5cc1ef899ff08e6d1c416a3327828641b760effeecae17fe1c2c25e2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188831 Malicious code in process-callisto-superagent-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b89bfed12b339906f993ccf93fe8a767aa4c8e542c6cd156df2e24604d5872d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189174 Malicious code in remark-exosphere-cosmicsilence-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e957895b962f8adc6e7b566c2611a524875a29b93490125c8e08a0c643b3e0e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188474 Malicious code in orchestrate-process-cache-data-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7471b0298fc61ae4c462894f9c3877691c475883df2c72ebf084c57d16654a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186301 Malicious code in convict-ultra-paleoceanography-carpo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c2845167a2257ec7f82721ef915aacbaf01c5ba75ccb341823c0098c0746549 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186703 Malicious code in electron-pm2-toml-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f39fb8a9d75395b1785a187dc32fd7123d42ea214d0d3cd4f9526ff421b0a685 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185598 Malicious code in astrochemistry-selenium-solis-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03e4945f4be5d41b84b61b8cdf7c141ff4cbd2a35808590735d6fda40200ddd8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188508 Malicious code in paleoclimatology-eventhoriz-areology-higgs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69773d9a5c3889d618b425370e12b0c6366104d947651f8e479e7215d1ddd1f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188601 Malicious code in pegasus-parcel-gravity-cassini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e7c77592ddbb2a0c217090e29a01954c5a286d43b507212a97f05b41da1e3e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185402 Malicious code in air-minify-load-secure-encode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1af3ec54197cb7da3f25eb9bd335126dffc771d242e1a8159a7354d5522b5442 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190295 Malicious code in websockets-hawkingradiation-redis-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 994bdbce332e280e57d34568b49bd87cad47f442aed60864ca334d072929e08d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189463 Malicious code in server-nebula-cosmiconfig-umbra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d990e48bbacd130f5620b5b20983fbbc4001f0ff552a7c6e169141a13af346c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190285 Malicious code in webdriverio-vuetify-antares-wezen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec458e52a9b2de78104cd2be4d4519b5b8c449a2cbcc9ea5ba651143ee5dc1e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in permission-index-zero-visualize-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ef95024f895fbc9dd8bd4d4a7180084f57208d75170afa7adc3e52403b32a029 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...