MAL-2025-186379 Malicious code in cross-env-cross-env-photon-superposition (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fb2fb8727e1f7724d5accad4dc8d450ac3e5735b535600cb2fee7ed81e14ac8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186163 Malicious code in cli-cordelia-chalk-redgiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a90893c3d7e4d4fa1c3626b55b27eb9e39f5ec83bb10dea8c99465c4493b68b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185607 Malicious code in astrophysics-extremophile-library-bulma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf10cbf40031ebfaa532db3444c9428c5e03586a9488e2adf2fbc812a3d7f4bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189652 Malicious code in standard-thuban-commitlint-config-angular-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94a6549fd8e5b7d2d9bdd5f25574202ea00d3f54f001e0e57c00fca175f5c116 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188369 Malicious code in nucleosynthesis-standard-pulsar-non-blocking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83cf65d391bddac395577093159b8c072f9a32c009def52db0bc36b66a431649 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189891 Malicious code in test-theta-old-yaml-eta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3105bd46bc3bf37e1426594d233e6aaccf8654317b65946cf727eac0782e7db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187550 Malicious code in isostasy-ganymede-archaeogenetics-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e72a040292a691c04c12c28505f0378f69205785bee641e65a94f8f7df242d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186167 Malicious code in cli-mdx-galaxy-xenobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed70162841564f001e1b03f2943fded9e5dcebe6e7aacb659f89a4c999ac941a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187633 Malicious code in juno-eleventy-prettier-stylelint-rimraf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6a310c6f44311b90b0c366863dc1251a35c2ec6b74bb4561c289bc7facabed6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186909 Malicious code in exoplanetology-comet-mira-query (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6dc4857a09d7da4d8793951c39bff14b1eb9b1e2b75cce02c23c2c1dcd8c9ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185466 Malicious code in antares-iota-mysql-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6b745a215730f800ab23e41a575eb14af8482a22bb5b1a6db13350db681a93e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189062 Malicious code in radioastronomy-eslint-plugin-procyon-kastra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7851458d77832ce28ecea0ea88d69a17a9a9bfc63e57ceeb1626557f598993f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190439 Malicious code in yonder-rollup-dynamo-build (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ccb52551e42d4562dd9b19f350c065ba155117fe3d515aee67334e1a53d74ad2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188265 Malicious code in nextjs-octans-interferometry-fusion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81ffbcf6edd07fde0a671041eb74ddf8d1620fe1cb6147cbee37b45eba572519 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186111 Malicious code in changelog-hugo-fusion-tectonic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56370b589ac24acf0fc8bca861dd240bb702293f6a90a1ef700afbc9e61584ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189183 Malicious code in report-serialize-rho-public-file (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62de5b36b23d92c1a388e80fe1d3dc55ee676535110f4175eb6a428aea0d3191 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188250 Malicious code in neutronstar-hologram-volcanology-asteroid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e16c455d2bae43492d5ad9590dbe8f3ae4aebfbac806f385ed676a3856de3121 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190064 Malicious code in unuk-deneb-pegasus-primatology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f27ede54e5593085ba94fc4f12c5c6965a752303a039123cfc0f3eca6482be47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189135 Malicious code in regulus-nova-resolvers-spinner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b92e9b55e91662d691c1bb85ba291aed8b091512b2005652721926e607e4363 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190123 Malicious code in user-boolean-info-decode-try (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5255d33f074e4f791a5dccd9e6d57315c6fc8883da3342c9b4a0a9ca8c5fb24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...