Malicious code in sync-vega-apex-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7049cee782d42510430e26832fb304bb48636354de220eb85f797b763b0df0d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sagitta-schema-release-it-husky (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e806b764b2423062a8953ab5a69c4836580fe7b128531cebe88d4b643a30555 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in library-babel-meteor-kronos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a9e462c051102c828b4d50e3973255ce834bba491eed99cf30b6f877f08521f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in puppeteer-geckodriver-redshift-eslint-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13eee7e60a6dfa0e4c6b1091d856e3478c1e254bac890f6a2f95ebf2ccb71ea6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186988 Malicious code in firebase-command-ursa-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acd3d6a206ba901560c4623937d141df01d36bf233f95ebff438b1128f0840d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in webpack-exec-adonis-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 857c1b3d5dd82954dd7c80c0e8fe57793032b251a6480c942c336ce83d6b774f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in global-sadr-polaris-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2758efa7f7aea7bd87750404b0663d363a1b4c383ad6baac3c731c85ce6b1277 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wezen-mutation-ora-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 785a2cd14109740cafff9a8e5b31c61ce4568134f9abfba94196cfe4cfa0d4d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in soap-slidev-carpo-restart (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ae0139684ff37091484c18ca8bc5d4cf9f1515aa5a2f6022fb21a338af537e7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185778 Malicious code in benchmark-view-mu-cat-virtualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fc47cd19dd87e3112e036bad1f9a2d225fe3502c682b923334313c3239d36e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188467 Malicious code in orbit-luna-indus-xanthus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ed9d865a656c770e023fe92f67cb64974da1cbe3fb0141834bfffd8c86df97b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187163 Malicious code in geodynamo-hydrogeology-ultra-norma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a25646f5279d706c1d9dd687cb55cb85561e38fccda1c0629ad76b46916f95c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185907 Malicious code in brane-kardashevscale-coronalmassejection-izar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d78059d5443582ab6158f56cc1d43c50c6eedf26fad4a962657ce841e070eee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188733 Malicious code in planetology-biogeochemistry-areology-equinox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3ea2cdad2ea28eee97d50e39769c35265556f86264f39d84627c958c5f00616 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188879 Malicious code in prosthetics-leda-mantle-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b02ccf110939f33fbfa2672f6cba59b7579228e554de159d0d913b20d0526171 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189641 Malicious code in stack-theta-meta-index-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1540d87914707a278e9777b85d134c2c627f02d165bde85e7f01f8b9dfe3237b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186933 Malicious code in extremophile-geochemistry-dendrochronology-ursa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bea310cfefb66f08a96c3188538369447bd04612535e404ae87469b672b6668c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187137 Malicious code in gemini-gravity-xanadu-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ef8b0e335c02e9e3202c8e0195d3bfd55501baef7ef0af424b6b5b8eb2310c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in astro-helios-nightwatch-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c597e6e94b0dc9824b4353d492fad15b37f4cfe800812bcf2c4174a1e8e63b3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in technosignature-wezen-blitz-blazar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e17bd367392dca319922695da590cbe880e13845c7f4e45ae2229ab21915f867 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...