Malicious code in castor-callisto-miranda-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 642a0e3b58478b1752d42ebe06e3728a14dd0d553d9e35c2c8bf429b0d2670e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187781 Malicious code in library-nebula-rest-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79ba74e4d265a0cd7cf0b173712f28c7ddd0af4de4fa9cd301c0208b5d3e55be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185476 Malicious code in antares-terser-regulus-gravity (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74c661c89405ec93ba721141d9f8248bb6122224fa99b0f559847f0fed24d07a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189971 Malicious code in transhumanism-auriga-markdownlint-canopus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94ca6b14f6e0c18b868134377c560103624d5e12334780667f4b5e1ff6661ca0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187495 Malicious code in install-enceladus-mesosphere-superflare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa05ee353befdf7fe1c329eeca05b4cc9cee78fc3dbac41901ee4bcd6609fefd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in publish-oscillation-astrochemistry-spectron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 154fe20109457e48fa5577f4bc485d5bda793bf620237fb9f1e818447da6ba67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in less-mineralogy-airbnb-tardigrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1e150649f9701fa8a91531cb8cfe5a7a8a65c99dfd46ea28f5561aad1fc5b44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yonder-webdriverio-lynx-blackhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfbb715d4acf64ade15a47fd3c5a01c86a6a1ba2777dc7bb8b003d084a247a51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in elektra-yakutsk-cosmicray-phoenix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64e053063556b6ad51aaa35357c867ca4d8fbfbd2c51ef10bbd60a53ea1b3916 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in selenium-halley-algol-init (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02ed0d72aa17ef547016ffb572562b5c34e11e0379d30a6ddc9cdd64cc716793 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ophiuchus-bunyan-exobiology-biotechnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b06a1003fa24edfdf40c0933104e1de0372f879f7f6b843e6fe467b2cc24890 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in blaze-transport-genomics-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a961479210925383a0fbf886ccf1a83d0b482d132a4cd67413a4ef5bfa053292 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185812 Malicious code in biogeochemistry-xenos-nashira-petrology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f82fe21385e7e511f088a5163fdd58d197f1dfb485a1f949ee04b4b14cd53d4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187480 Malicious code in init-rest-sedna-gacrux (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a65abcdc90c34eea2a8e989c096887f6b814d460a37bea33ede3b1896d2ef76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186148 Malicious code in chromedriver-hyperion-isostasy-cz-conventional-changelog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bba21800fecd9e38da48ea31cc273e421e261933c1367a9330955505b5dcb97 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in solarnebula-browserify-lightyear-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d0114a2c36dc9ade148440482f25df3f599403a605d2438cde49dd242f702b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in enceladus-mdx-zenobia-blazar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99e2a80c789cff4acf26ba387580fde45a9aa60b2e20961dff463da98406a92d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in integer-optimize-alpha-byte-authenticate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3cc0597617c50b1abbdb88a4a1f29177a51dd4efc9e1e4472762f2d4125f247 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nextjs-weywot-bioinformatics-selenium (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e21c7bbb3589182010dd1d9bcfb88841beb2fc6f908229b0a78e48f24a75fb9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in emulate-private-alpha-decompress-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a73cd7def8995cb1c4f464021cd52d52ea06de08bba825ef6747549710d415d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...