Malicious code in event-biogeochemistry-blitz-eris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c168aaa32c6134d19bcaacecc1914c528000c3a5742ed4bc55ec24aace833057 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in planetology-stratosphere-library-csrf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eadd62ef40f3b877824eeb1b48d4aef2ca574fcb0f1eb2abe17dc8802ac3c894 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188129 Malicious code in morgan-sass-loader-release-it-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c153eb6fd6cc614dab9d8fd43c3d5a0e5258e9ae6ddd573ad103e2a78cdf4f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in radioastronomy-photon-eslint-apollo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a645989f783782e13048984e4e9fbd513842be85a2bee02ecbb304166d33afd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in commitlint-config-angular-graphql-ursa-yakutsk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd57c25c7dc8e5c5e65fec44158bf31a22298db16e48f9ab0afbce4c61fbb2da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in development-playwright-stratosphere-parcel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71e0ceb6921987d11128b3d9468cfe3777ed868bbcb9f3c382500437fb7f12f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190473 Malicious code in zero-daemon-small-fire-pi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0a0456658b09d6abae40aec0e7b3864570435f2c3bc449f3470354d85bff0d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in jovian-sass-loader-native-cassini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 225deea9531693f6cbd7d6edd3656452b2959b26fd0b8a748ec2e08d0dbcbb98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eslint-plugin-gacrux-wolf-ariel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65c4c2c488bc3934c41186d1bf456e7754924dbf514664faccb83c81e00532a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mechatronics-borealis-tardigrade-init (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e651931a0daf2cef9a1b2da12b3ea1df680bbe83487eb4a9897a63c3722a27ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188327 Malicious code in nodejs-oberon-ignite-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e482bde61fb3e85e4f0ddaf6dbd2bc2b7e66e9546b44fb6bde77934921f5482 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186975 Malicious code in file-decompress-gamma-wind-object (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c18eb3d3f0daa811ce492b9531635f4cef64f89da0a246e6005ed0a1dca836ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186920 Malicious code in export-bad-compress-fork-compress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2450caad5f166bccaedd001fd246098f519b199e4d01210149d86eda62fed676 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186105 Malicious code in chalk-stop-indus-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87bb8e1129a1d5a199fd42030542e91c8c409a534084d9519532cc4057e92cc4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186515 Malicious code in deimos-hermes-quantum-venus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da041c19408afda84511c39a5af5b767f425c262366c89f8688965f88b3639d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in modaiv-klvu-bav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e483f02a845895bf2e64288cdae1d14e339134d342840715765852437defe1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gociay-unga-fug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18126ffc4821ecb116c0aa4cad953679d9bb49e7a39195d1590d8a1ddcd3568e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184770 Malicious code in poliaoz-aik-avuhusibvaku (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc71c714bc92811b886b32f9afbfe27994ec75d9a07fee0c40f73e25a5ead4b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in inda-fodj-guofipa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aba4af3582761663277689312c3073408897767d94b09a2faede41d8fb8cb050 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184802 Malicious code in poliaoz-aiksdfo-alfd (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 347022a93ba4cf38fe3d305a0bf71431292890ebfdd79941b8372d4eeb204933 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...