Malicious code in await-file-public-transpile-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca4d92450f404e35fd817bae135806fa94dcb54c32550ee158787b91f54f8b01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in concurrently-hawkingradiation-tailwindcss-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2666bd2deaa384120f711b4ca42f1ee157cd1ece04e11132de099f8803437863 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lambda-daemon-cron-delta-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14fb54f754c0ebae3c47333aeee6383f8571f97acc80cc251881087f1353d280 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in iota-release-it-stream-xenos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector baa57807101bbccb1ed65d8bbde73a1aec0b5c86283b35a5d44a29439362fb73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in blazar-pegasus-quark-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8fb562efe2576263ff6f9cee25641a84e3a8a489f30297ccb205fe5448defec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in public-dog-secure-user-omega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89b3ecbfb521f54bc0a2e5f288dc76d1fa2de219c9ce457fa24196b94a7abd81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in promise-yonder-lint-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bcc683c63ed5e1e96a3f977f18154776f0344713ec0769fcb379dede9262bea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in long-class-report-grep-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c531eb996fac38a8cea19ed3fe4e78e127323d14b9f80d1cd2edf596cad55e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sequelize-slidev-forever-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7d1f9d87e5296caf1b7c624845186eef2f3d3f442b9fd68d4216c088d7c779a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in janus-aldebaran-middleware-paleontology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6998a4747c3574968be2d1944b519bcfeee302db9a1947998792ab15a7904e44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in archaeogenetics-taphonomy-blazar-singularitarianism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aefd22fa7cfda1c1258d658da20bb019dfb96856f3a8392f197c7146107aa612 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in user-root-node-transpile-class (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26fd90abf836916236fb0bfdf86638679a1ddca3a44139fa6e3a6462f6ab36b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in weywot-wasat-galaxy-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d83b4069b0753c07d3c79bfddcd91d26290f269a708d2f97e47c1fa9605c067 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ini-quito-stratosphere-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80addd4c113b2cc5947537311ac67c987723ef1ebcd79a98f25b63fe603be5e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186479 Malicious code in darkenergy-google-paleoanthropology-thuban (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e7840b2d8bc4ea830f6ac0902efab2ed67a3181461cec1cc74a07a7c515f105 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187060 Malicious code in fusion-astrometry-speleology-sedimentology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ba45c83eaab790eee19ca8938e29d07510392bc54957785d99bdb4e92b84e31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189679 Malicious code in stratosphere-spectron-webdriver-deimos-dynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f856118b60305c931ff0be82652330587068fcd0b791ec496187dd214c7cf5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187949 Malicious code in mdx-callisto-multiverse-achernar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3374948137016d0fbfe8d61be9db1108f9bd36e373e2755a997e3a2e83819f2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190447 Malicious code in zenith-geckodriver-rimraf-non-blocking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d36e1b47c6a8e5dea570a5dcd3fcac95ca35a52c52436517afaf66ceb9522d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189748 Malicious code in supercluster-filament-cosmicweb-spectron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38ef3c54e4785f181cf7c10d8c75738e81ad775e2ab94caef427ea09a612add9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...