MAL-2025-186633 Malicious code in double-final-proxy-gamma-alpha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4ec39ff7bf59b56c61810df48a1d2af795708d4a5b19120dd66226393f90420 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189152 Malicious code in relay-dagda-sync-graviton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70e2fa9140c056d951512eeda4b917c4d77a95617f974d632aeae2f8e5465c86 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185600 Malicious code in astroinformatics-brane-firebase-socketio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90e22d20f7c69d4877b52fb6e6fbb3e952ddd07144b793d3cccb6685f2fe596d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187459 Malicious code in indus-neptune-typeorm-io (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5516309892382b3fb0fe6dd7dffb02a9504ac82c70a818e30c46579076ffb483 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188651 Malicious code in phenomic-gemini-adonis-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70e473e63486e2e3fb28b1c74b916ee10e38ac8e36cf418dc8213946bf8a4a0b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190450 Malicious code in zenobia-google-readable-paleobotany (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 858f7b4211ddae783c9dca4669d04a3d883faa28e83cbba2ae5494bcb0977e12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188657 Malicious code in phenomic-paleoclimatology-slidev-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 279c8e17a716179e47c018d674da33af1505e188e89645680d467ba11d2917a0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190178 Malicious code in void-exoplanet-ganymede-geodynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c9a2c790225f2e208964e0a25bd71c0f64b5307be9ad53a6361c7098f046d5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187000 Malicious code in float-encrypt-awk-dog-export (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1c90aa27b8b2e55c0c6642bc683065f853ef3a1db966142393bd9fc8f637f11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186738 Malicious code in enceladus-sirius-radioastronomy-octans (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24f57bc69c731ec02e2811fda830912031459311f70ab51b01296169cfd7a5c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187328 Malicious code in helmet-sagitta-saturnology-element-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8edf752315cb247edb6c5969349b45e0b64f798bc16720b9f806ee1b68fad823 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189947 Malicious code in toml-json-express-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e3cbd03b3937d2d33a6253b82a0a39f4f6f81fd66eebf439e0d0ec0bf26ce60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187192 Malicious code in good-minify-private-container-object (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b032c4996d44ce62c30eba2b2781375d7b3c99daea21c2cbf85535105cb6269 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187633 Malicious code in juno-eleventy-prettier-stylelint-rimraf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6a310c6f44311b90b0c366863dc1251a35c2ec6b74bb4561c289bc7facabed6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187804 Malicious code in lint-cassini-metalsmith-jupiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b4b2a23fb9c62a119ab9c0e8750246e8d4d015ca5b2da5e50221be5da0c3609 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189987 Malicious code in transport-semantic-release-cressida-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ad2ed4999afb8ac268ab70d6a37553264610fe139c6861aa22966b3183792fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in neutronstar-hologram-volcanology-asteroid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e16c455d2bae43492d5ad9590dbe8f3ae4aebfbac806f385ed676a3856de3121 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sedna-request-dysonswarm-enif (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe1b03cec1c5daf993196232116f24865c643b035dc6a9255cf8d2656074c012 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187185 Malicious code in global-rollup-plugin-lightyear-thermochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cc57f45ae1114a1d5982e809872dccf790990097759e1326399fb0c4f9c9805 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185675 Malicious code in authorize-interface-good-xi-sanitize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d85a36709ba2fdf12ccdbbb3a62be3d509127dd2bf12f9547d0c46a7016f02d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...