MAL-2025-186685 Malicious code in eigenstate-electron-builder-despina-bionics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 856bb07252bfaa1fdcf360cabcdabbb8244d7be52299c195e584d92372aa55a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189161 Malicious code in release-it-apollo-norma-vuepress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21720d221c3af640d8dc3cbd4404fd10878947a67b82f019946f024f4ca1bd45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187659 Malicious code in kappa-notify-web-encrypt-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4adabf06362cf23d6c3eee9d92b084952fd8949a52f6b30a787608914698c108 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190076 Malicious code in update-hadron-rehype-phoenix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f35ece84680d14ee5b47b141f5563546aeb735678836ac5514467735a7ed72c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187485 Malicious code in innercore-superposition-lint-staged-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7abd4acbba5b074836858ec5783011c447065694a29b8d590667f5c6cfee9cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189164 Malicious code in release-it-juno-cypress-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55d18c480ca87915de8b545c8543b1908769b9d71711027a718c1af31ffaa6ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188065 Malicious code in miranda-borealis-nova-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91dfceb96c2bb4d76d95411a0920184fcb12cc9d7aa77518302845bae0a3e6a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188304 Malicious code in node-config-commitlint-panspermia-superposition (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e0aeefef00ffafa72eff5735fa1a8801352c9e4c828d148219678c1b24d15c6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187874 Malicious code in luminescence-colors-resonance-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b436ab9ff3e8151563e055e479bb058c0a0e3b067ceafea6f8f597b6542fdf2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189313 Malicious code in sagitta-izar-dagda-nightmare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d66262e7994275c6b59e3b7a607c7666b8e30293a518ce04b1601aa91f38c93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189950 Malicious code in toml-slidev-nebula-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acc9ce901d26d00fd31e986b417688de1d5bf8b92f291024badd653d3d19808a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188086 Malicious code in miranda-yildun-zooarchaeology-bionics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aeb6e52bc7a803ec59fb5ea57adb0ca8c9134ad7981072a5e09e122835a6c2e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187678 Malicious code in kernel-stack-grep-zero-table (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8586af4b87f0584e7f4565c38a5854e41b7072c3d9a2187bdaf4eed44194e82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189264 Malicious code in rocket-polaris-prettier-schema (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b22e15bc048395a61f688ffa84069166c241328128e1fb0ab74bb9951a999d64 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190330 Malicious code in winston-gridsome-oortcloud-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db6bfd77d9dd95c84108659afc62dfad4e071d33b38b1e7b726038c0e49792b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188137 Malicious code in mui-cluster-antares-nucleosynthesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09a79c5eb88dbf060771545f41472a61811c8817947e70dc0fc5cc821841efb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190242 Malicious code in water-execute-rain-root-cloud (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6de575c2b404267b02a2a3ca2c624486aef9c70fac497b83043375c8c4080eac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187565 Malicious code in janus-aldebaran-middleware-paleontology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6998a4747c3574968be2d1944b519bcfeee302db9a1947998792ab15a7904e44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186523 Malicious code in delphinus-chromedriver-quasar-cordelia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd60d7806f9457c591f355001b125b114764a71b5d93355057a3434d1a91b5ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186418 Malicious code in css-minimizer-webpack-plugin-brane-saturnology-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64b3a15e647657f89676e3a0ec4db2727fc5da627f8ec6d6e710edaec52ba97c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...