Malicious code in adonis-cosmos-eslint-plugin-izar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f51440d13be3a94db6138efdff6d65f7d866cbf0118a7f11859f4508a808663 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-181372 Malicious code in baso17 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a15d0e68f2a30282c214e6e938249cbd3ad13b50a337968128aa5a3774401b63 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kapvino-socvni-fuvviafavi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector faffd9b5ea0e64e49675a2d932a0c15da81ca6daaffa75f90ed2c28b65c4ce71 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-160979 Malicious code in munya-mipt-munio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83dd19d0f6d47a25827e42453ed7fe497a3434fc8af0e146d7387a87f62e1118 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nodejs-titan-thuban-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8539e22779886967de1cf80034d2581c2dec1fc51ee6b47274fac4b08eeb6a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144988 Malicious code in mini-css-extract-plugin-postcss-hapi-protractor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01be8cfa96e4044e64f8c668c0d1417368b0897ee88586a73bd7dd7c873c629d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pino-pretty-inquirer-ultra-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fdf249268ec831551ac3c3a12ed6bfefab705486213188577886fd1647d1dbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in magnificent_dinosaur_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9d66b63ed3ec7fdc2f255141cc50a4679f531f5fa34a9c8a5767209af41efaf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in urban_whippet-smiletea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1479e1c09d38b6c199cdddfab829a33db67c4fb4032574a2dd629860ac68b37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cici-kripik90-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12d459c675ecdddf052f9687719b389e6d94662a09b831cc3f9431738cc5c075 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kresna-telurtahu12-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1649c3218ead716cdd90f8b188b67e13775bb13c5b6aca1ea45b1a0b5591ee86 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-64511 Malicious code in nina-rujaksoto34-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4b6bddf655f575f6db19ff846a4220f83134a0f193525cf2ef238c9293ddf1d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-58716 Malicious code in siska-liwet60-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ed2ccb6288b87b31bae49945fcc9c3d3701b7a1666b8daec28822488bcb859b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...