Malicious code in yakutsk-alphard-winston-nconf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42520c8dc3cb5fcd945016e4d3fca6d736c2b65f9e37c7c765d7c18be63ba45d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in async-yonder-hadron-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 775c77c14b2284f212027404562df746812937dd230c0e6f51634f32df0c533d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185646 Malicious code in augmentedreality-vega-chai-cosmogenic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf9a20ca3eecb8f7b255ef5dd875b8d3a8cc3efd66543789eae137aa9f0f5837 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188796 Malicious code in prettier-json-publish-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3c227b49ee21c7585211e16c411530204bd43403fecd781aacd0227c4f241de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189907 Malicious code in tethys-schema-proteomics-nuxtjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc52405d182abcbe70ebca1e32782e8c4b840ff6509fd47793c70c9d97a8b05d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hash-uglify-cluster-info-orchestrate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58a3a53ec24253c6ab5d1ed24fd3cb74c1c53f7311dc887ff7434622f50ad233 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hexo-phenomic-odin-element-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e24f316c2017efbe3858a178ba430fa5b15695ba388d42bc7350613d60c043be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in await-lacerta-ganymede-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3768dcf0227735127c0afebbc782199e7566c7e0b7bd1a357fc0512632645940 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in blazar-quark-publish-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6051df5e76609f10fbecf1f58e20ad09d8098ec4fed4723d9a81bca13555b27 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in deimos-iota-luminescence-geochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2829516c5ce8615b2a59e4a46d3506efe33835b6b745515c481d71be3483605c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gammarayburst-venus-tectonophysics-colors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4109786a6043bf4c8d88fb2455c72847a0962f9e4f4dd5b8e4ccf91dd9984405 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miranda-lithosphere-xo-alphard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f1eac87038018d949f144f833ce309a39c90f8dff7dca3d342001cc46bd9217 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in parse-array-slow-emulate-notify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79730effee3d6d0c7142b05c594c736477c5c548260feef0b81f2fa621df42c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in proteomics-zenobia-cosmology-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a4e7d5ae13c3d2ff1ead466a88401fa90829d62ed12d16ab27ae9c89d0f3bad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sun-thread-monitor-void-sun (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 047adcabcc874fbcf09307af5ef5c1dacf009d157f5e7e349936d9bae83a1fc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tau-moon-scale-private-analyze (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7e39b6af5aa0b6b25d8b7e6b8d55595b0aa3c3e86f6689b8c787559f5ca865a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zenobia-grus-readable-semantic-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf7f6afeae699f004a49669c40ec942ea5468412b503aebc4ef6a6dd68995578 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in steganography-yaml-quark-geochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8dbc57cb69903aaa2db9f1b9e287c532e67cb38af8417ad3e70686986e074406 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yakutsk-electron-nebula-jekyll (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e3af3d47e9940bbcfdc5b9bcad2402c0f51883d757f2146466144665b36d363 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in procyon-spectron-webdriver-nestjs-gridsome (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26bbd9161c64afc49fa855f2f702c58f7550b71f364944f0224c1323aa0cd7e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...