MAL-2025-185630 Malicious code in async-registry-build-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b787b4cc82b7e9203080fa1cbb0dfde6a06a8c55417491aea92d72ed9a1f97d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187353 Malicious code in hexo-interstellarmedium-spinner-less (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2d056a5ff5a98aa34e68337b4e80e0fe26986ecc5cc6a0b376e60bbb1dac07d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190206 Malicious code in vulcan-nestjs-pm2-biohacking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbb4875e49b846a5441dad6b2373d0ace189c14788a09f94644ecc9b13581fc3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186949 Malicious code in fermion-geochronology-quito-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7a2f7cc81ec51b781fdd5edf0b82a3ff487dfdb67166aaac920eefd31e6d59e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188055 Malicious code in minify-report-compress-compress-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99dbbec0f45be78a69c0e58da0c15b858336cd03082f3e4bae5bd685bf93c25e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188962 Malicious code in publish-xanthus-cypress-redis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cddde1a52ce767fadb05cbd31671938c574d95abb54b2c3e13d2a133ea934da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186633 Malicious code in double-final-proxy-gamma-alpha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4ec39ff7bf59b56c61810df48a1d2af795708d4a5b19120dd66226393f90420 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190363 Malicious code in xenobiology-electron-deneb-rimraf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95d8ef715a3d090ebad1f5c4179df9c012946cf224baf6da20e70544e333058f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190354 Malicious code in xanthus-cosmiconfig-nightwatch-eridanus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72da61120c59c0bf43b0bcabd6f42a48b27ef2a01ff506bb7c55abd2b2b89c30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187255 Malicious code in gulp-prettier-spinner-parallax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc58ea571f5bd14201e5b992627f478b50a21460535b722143de565ef267bf57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186903 Malicious code in exoplanet-genomics-thermosphere-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c3eb6aa62f0ef2efdeb2e5a6edc6dd0fc792ad8dd18cec6011451d9b9b53b6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187430 Malicious code in ignite-rehype-xo-cypress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4a51f0740e1612c51322e453536c8292d2bc79861076bc5c2b152821856564f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187892 Malicious code in lyra-nebula-node-config-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71da1d08ee103264b969b081db8fc81219689df4fcc9605329c81bbdd888fe5d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185395 Malicious code in aether-quantum-computing-koa-xanadu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84a4b8cd8cbf9f137039d3f9b8aca496bf6d4154493af8261c7c0610245ed308 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190178 Malicious code in void-exoplanet-ganymede-geodynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c9a2c790225f2e208964e0a25bd71c0f64b5307be9ad53a6361c7098f046d5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190396 Malicious code in xml-oberon-axios-neuromorphic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d055296cad7864006fae38c855357f3989b269c0e15811c27891d9d0a2c49d60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185588 Malicious code in astrobiology-andromeda-lightyear-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc736c55c72d0f9291044d176f8994899fcbe84570846333740ca27bca8d31bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187185 Malicious code in global-rollup-plugin-lightyear-thermochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cc57f45ae1114a1d5982e809872dccf790990097759e1326399fb0c4f9c9805 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188125 Malicious code in morgan-meteor-loop-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70f8ff4fac46120d5c038ff72708bfc1e04ff3b4a1d0997b5a208cd5adfdcf26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185460 Malicious code in antares-apex-robotics-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05283e2ac79402a444e34dc483cb2ef0709b9639a2149ee025d60b9d9c920581 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...