Malicious code in heliophysics-aurora-lint-staged-global (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3146d8b6e52b168ae00047b32f06d4bcb6748de549b64b41b2bfb73c6bd4abd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186362 Malicious code in cosmos-public-warp-planckscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1aef269ae3ec3a16314758d9c600b3c87b62899a0b3acbcfade8eb9b93663658 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188426 Malicious code in on-graviton-async-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90e9e217418751f17e867d92f560f0a7829cdbd6752bb5530d1d45989f389b07 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rocket-package-sass-loader-avior (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d67124e33ba64b1c42f833fc39b6ff0beafc787ffff39c5b660e68a4b0a509dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pipe-cz-conventional-changelog-meissa-canopus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f76581a30ce1561ccc8aff0c4f6f3ecc981e5d814d26ad12af5b54f32937a161 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eslint-commitizen-firebase-upgrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84a02e2ebc235a5858f5242b7bca357fb71d130da4ddc12d9ce922d603aa30f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189195 Malicious code in resolvers-chakra-ui-bootstrap-ursa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d79ea6a0ddcc32a8eefe901fe9fac78119e8f7ef1b653b5f8b55b441099df42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189572 Malicious code in socket-sigma-minify-pipe-array (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db413d110af403ea736f9c779fd5677f35ce04384260e6cc655e3585db962105 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cybernetics-selenology-local-eridanus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45900616fd9126bd090f5865bdf4a028806e11b2380fee63848bb099345c6c7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186190 Malicious code in cluster-wavefunction-subduction-transhumanism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d0e6bd0652b5e4d018e928834eec7a01faca00e01d4f657865eee6364dbb3b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186011 Malicious code in cassini-halley-jekyll-less (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfd52a72d246c6814a27d6224892b221e16e0799cabb54223fb2bf8d9bc57b74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189010 Malicious code in quantumfoam-dysonswarm-io-aquarius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93d4c40ddfac96db4d16617d8dbd26b31056e7c745f29098ffc857d010c1e67a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187669 Malicious code in karma-spectron-parcel-aether (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca8ebfffe8a310711076f2d7bdc505e17c208634ea3a5ea03c8ebecf21c0544f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186289 Malicious code in container-async-awk-zeta-runtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 082ad9eaa7013935b76f49b8c891ae47917346f7ad1ac35faa8cee452b2338e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kisut-diufg-difvatav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 244d32d447bbd967a6895ed6044f0580769c2f95fa4d05cb2c6d5afd92f260d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184150 Malicious code in mlokok-lofki-afungi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82ccadac53b0e4e833d35a8623c6d619cf0a052047e246cda9faa527f3b61af1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in itale-adci-gnyagbyyu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afb84ea3c86b8e2cc1d2aa0bea66198c943caaed7240aa2e36ce60398e7759ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-181843 Malicious code in avangs-olios-nolibaayi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c963d99fce93732384a1c562ad4e6ecfe6b3b891234b3d510acdd8d42131609f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184222 Malicious code in modasiv-kuvu-bavoisiayabu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95b42b032f969e5090890871f4ce0940e685bfe6262d71e888197e54bc2466b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-183686 Malicious code in manu-oi-gisigo1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 096ae7b62a3151b4d96aebd464186069c4f959d3ee5eefd14f8bd1373f7a7982 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...