MAL-2025-189828 Malicious code in taurus-heliophysics-commitlint-config-angular-superposition (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3142a8b96d0c8015bd6d17f6e9038ce57ea590fb830bea588d1c9105ba3e48ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188304 Malicious code in node-config-commitlint-panspermia-superposition (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e0aeefef00ffafa72eff5735fa1a8801352c9e4c828d148219678c1b24d15c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189264 Malicious code in rocket-polaris-prettier-schema (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b22e15bc048395a61f688ffa84069166c241328128e1fb0ab74bb9951a999d64 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189110 Malicious code in redis-markdownlint-meteor-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3a10cbf1ee2775582f30abe53d0ddb3e5f06c22b2b5b175c8ddc0924d2a93e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188710 Malicious code in pino-pretty-yildun-express-graphql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 269ed87702f42dc45182c4c396bd4001c18e108c66d5f61fd4f3ac96adeee437 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187874 Malicious code in luminescence-colors-resonance-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b436ab9ff3e8151563e055e479bb058c0a0e3b067ceafea6f8f597b6542fdf2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189313 Malicious code in sagitta-izar-dagda-nightmare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d66262e7994275c6b59e3b7a607c7666b8e30293a518ce04b1601aa91f38c93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187485 Malicious code in innercore-superposition-lint-staged-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7abd4acbba5b074836858ec5783011c447065694a29b8d590667f5c6cfee9cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185562 Malicious code in ariel-semantic-release-optimize-css-assets-webpack-plugin-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e92e6e415fb780ecd55df704c9df844b75061c1af180a3ad3f6e2d6c0321a3b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188797 Malicious code in prettier-luna-mysql-stratosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3222eb9b99d6842ecb63911c1a6c1b490c2c17c005acfe908b74128d7328f962 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190410 Malicious code in xo-nightmare-magellan-eslint-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f0b83fee59dd650042e6adedb72297944d892fb054fc0abc747385fdae4e758 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190207 Malicious code in vulcan-quasar-prettier-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9565ba49afcf1a59bba550526acc4bf8556d6fb903b6c4f4e3ee0b7f79d2944a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189950 Malicious code in toml-slidev-nebula-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acc9ce901d26d00fd31e986b417688de1d5bf8b92f291024badd653d3d19808a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186958 Malicious code in fetch-charon-callisto-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62550fec98515505f3376660a176a2b13482b88711b0022c9925a9b825e4fb36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190330 Malicious code in winston-gridsome-oortcloud-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db6bfd77d9dd95c84108659afc62dfad4e071d33b38b1e7b726038c0e49792b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190158 Malicious code in virgo-framework-dependencies-firebase (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0409c65db6f8bd311bf6cb439379b2c52dc1f8fc0a7ab975a69106943fe4e47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187393 Malicious code in husky-eridanus-quasar-geckodriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19e89051fac6b87ecbec90f9d80c101f8f3a1d9fe8faf531046b922f215b64a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188040 Malicious code in middleware-fusion-gemini-rehype (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92ab40641c6da304cc6922285105d49ffd9eb14410326e1a5f260efd9270fb7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187565 Malicious code in janus-aldebaran-middleware-paleontology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6998a4747c3574968be2d1944b519bcfeee302db9a1947998792ab15a7904e44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188137 Malicious code in mui-cluster-antares-nucleosynthesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09a79c5eb88dbf060771545f41472a61811c8817947e70dc0fc5cc821841efb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...