MAL-2025-185361 Malicious code in ablation-entanglement-got-epigenetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8c9524739c912fc11604d6c93045b1cb8aa898c7abe96b855fe424639842b8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185380 Malicious code in achernar-hermes-centauri-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eab22301bbc8cc3305c04124149153e96718f5a79c8fcdcd1f4e7e2d96ec6c23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188668 Malicious code in phoebe-borealis-vuepress-coronalmassejection (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deaa586f7a513b8036116d867f85c2889429e1affc2ab69c5e417d09987ff2ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186454 Malicious code in cz-conventional-changelog-heliophysics-carpo-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87b43b39469f3044ffca305f0206cc9adcde03611a0fd8cf39b08d0230171522 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189960 Malicious code in tool-webdriver-mocha-prettier-axios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0202e0c6d5116df45f3fbcb466f9f4469417db5a0a3a8c2d51725d491a76e674 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189881 Malicious code in test-cache-rehype-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c6d134b4980b93d8c9ca0986a32a823ed1185745ec35ae4127978f61c7e7324 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186484 Malicious code in darkenergy-style-loader-style-loader-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b63bf79b92c5f6a95a6dce7dc164aa540cba55e4dccae81f7f45965620fdf7ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188141 Malicious code in mui-neutrino-nestjs-stratigraphy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 729cb919a6d87c0b891badd0fb0662a70c219e865dc84918201050bdf454babb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188576 Malicious code in passport-fornax-phenomic-helmet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0027eccb2059e4e9d4978c1294182a8c666dbf5f0394eb96327a6a25b3a20c88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187189 Malicious code in good-bundle-scale-grid-load (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecb5f25a8c7a4ab999302de7e1d4276c98a195b7ab0c46c098583f229a388426 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189684 Malicious code in stream-indus-dendrochronology-run-script (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fcdf9efe1fac494c78e0dc753729d3c091e5206d94dfa78e6b2352c83e1ddc9c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186097 Malicious code in chalk-mira-procyon-schema (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0669f795188c9df9f20c3ef0e98834b88a8aa721162b82698be48039ae152568 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186985 Malicious code in finally-stack-error-cold-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 851d0023f1b630511561a3a8277fcd85b55a566b9ea984b4ba5f4e35d51eb296 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187851 Malicious code in loglevel-meteor-mui-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ca35c471536de6395cd1a455a18886f5a26d7919adfe6f44006c4879d894dfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189043 Malicious code in quick-decode-transpile-array-wind (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 789be1eb5319667c7103faae653520c2ac40f78ca9957e497f34f7395845b3d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185439 Malicious code in alphard-fetch-electron-builder-levels (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e9630f529c3a2decf0296dc89c233694d4d75a41419bdca5403cc0224582f52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188178 Malicious code in native-electron-builder-nashira-tachyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2c326aa33890289362406cb0f22eec8401d0b31d237121e8667b24eaa89de69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188881 Malicious code in prosthetics-outercore-javascript-taphonomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c931a82fa3afff46bc1fe441ae31982dca93b3671d9adfa8e375f3fe42ef6c9e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188025 Malicious code in meteor-hadron-hermes-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 406ee3b851ee1ae01cae0c7e1ae0e6a83e9ce50744299402f3c59a7ed7950003 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186137 Malicious code in chi-mu-socket-cold-small (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0c962890667949b1dda36ebe56787555eacad6d8b589542c2a0f944f45c3d10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...