Malicious code in outercore-cli-concurrently-troposphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b76cbf6f2fe58669afa1ad61f6a6f611e0b68ff421df8477ef30eff21fd33ec5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in web-route-final-nu-route (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a5c7be5f1d5e20af05a8a41845cf88aa11d49fe80adadaa957e21395a29b1a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sedna-palynology-aquarius-lithosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eac0bbb77f85d66e96e7621b2df56694543e202d7f900f824020d324e9e6b068 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in exec-local-mongoose-dione (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b872afd1ac291d4ad9a6557070b1a111c63c386c84d16d9637c174bb6e04f49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rate-limiter-aurora-helmet-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9633e2fd02710c31a807cef01e13aef312acd495a2495f49441b3006042bae81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189820 Malicious code in tau-mu-good-beta-kappa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ffc911728d84781a700b5b9e706f5e42e1d50b3a29e8c8141b254da2aa124f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185462 Malicious code in antares-aurora-mocha-corvus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 889355acffa58cb18b880f4ddd5e587f1056c8f5bbdccc545b03da310c4e347c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hercules-css-loader-restart-eslint-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71cc33249cf2dbd5db35e33047b6953ad257e29a19278529523291fbffb2ed6a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in darkenergy-style-loader-style-loader-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b63bf79b92c5f6a95a6dce7dc164aa540cba55e4dccae81f7f45965620fdf7ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zenith-cladistics-plutology-luna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05e4a78984349e9b233c2b9c6774a1bdaf97c0dab19c4ef6f0adec068f2c6150 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in biomimicry-epigenetics-rimraf-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b99d6b16ce5f9ad8a4b63643f29ff2a163289920ad64bab9677fc22fda67ddb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fomalhaut-venus-pavo-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 329c73a08e9f3032f6b513ae004fb488440b7b7fae9069985ce5d0cf7d9d76f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mechatronics-quantum-jekyll-jabbah (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 844727a6f4f0c7890a89152de5b46515e0e08e486b4583e089e3d39f32631aba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in passport-magnetosphere-sociobiology-ichnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d6a1b5f77b1e31f60a428ea2753d7840a8976284d049afb13d7ce18c39a933f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in registry-firebase-bunyan-prettier (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82d9b7fc7f6514023a049e5263cfac52ab080b751f5f9d2fad7965815713cab6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eta-sed-assert-spy-hash (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aba02fba2294b944dedb22735bc1a124430a994c135af1e2b1361494f868a743 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bootstrap-fusion-loop-restart (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ad929870f7e51b33e4727a05618a9c190591109bf47fc02313b51fdf7760115 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fast-java-stub-void-bash (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbf6d41c7ef745a2b7ef1562477f9a960072b1225abf823fd2d741c10222a6ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in warp-hyperion-quasar-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ce712bcaa7250178e1c74d3981affc85be58ccdcbbe4747eb57092b766b7c04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ceres-perseus-csv-nconf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30c056932c3d3448bce628b008892baa0861966b26f7034bfc9a2259f6077bc0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...