Malicious code in chalk-cluster-nucleosynthesis-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2857e2f58732f4e737b5c115e17ca2ec106da05278448cb9beae381e8bcc151 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pipe-final-tree-emulate-byte (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64fa14cf34816be7e5742ecb67c383a8fd18fb3701f2d19930c2a2906e208e03 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mongoose-electron-bunyan-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09ed494efd702fa86dbb4eb80c161c3843775d08315479692bccbcbd4c8864b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in execute-long-pipe-file-encode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5dfe837fd34a8b4469ab59da1615cecd539ec907a7092c2d0566fadd5cef083 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in air-query-sun-void-debug (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4415629b6f9c34adfd199b9e27c7decd99d107eea9d23f83c216bda3cf37b17 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sandbox-long-compress-book-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ee676fdf4a328f91380e094f39eeda1184a866c32f09c81103c42cf748fb558 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in meteor-envconfig-quito-singularitarianism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db114004de8a873c258c341f245d4f56fec63e857a8166cbe06223c1d7447538 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in meteor-octans-grunt-kuiperbelt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6453ada94af1f9b899d8eb2790c3bceede6d346d92601996f8f8fc7cdd7ccc2d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in meissa-hermes-callisto-sails (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b633dc83b81fa2bf2811bca79ee36d4afe31a1d5a5ca8d3cb8a5bf01364c7dec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ini-koa-adonis-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 814dda9fc098a95449685bf70ed597eaf7718a69688a6739317f7af0058ac94c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in integer-kappa-sigma-double-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf5566ba2f350927d21b27f4360f63f302e2bc7d0db732981ccd4b04a114ae2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gacrux-dorado-impulse-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c65b3ff1c02ec4218b6d3cfd1acef8705073c0a75768296613710e6fd716088 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in throw-long-stub-thread-small (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20d1911fd1bc8fcee8202007abcb6410966a735e297b3dd98ab21559a2490b02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wind-sun-stub-function-import (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82f4b5d1fd036d698bd418cf176c93868ca1ef60e4582665fcef014f84bccac2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in spinner-cryptography-acamar-elara (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1062828bf86ee46897b6ec3fdad22b6f8d2f28a798fbc38016d478935ff78ca2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rocket-got-heka-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 778e69e1b6a1c981f67cb6ad0fce677345c087976404dfb27b70709dfe9619e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in singularitarianism-europa-spectroscopy-lithosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbcf21e8228fd9e543c8d29d6cec97227cb7d7ec7a78be07db67bbd5b7d813a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187498 Malicious code in install-geckodriver-blueshift-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2240b015dcaf28ec92b8a7042872a396aca384419b7482b994f0efd2493d68b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188403 Malicious code in odin-toml-element-ui-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5661962d1fadc577d8482aca57631a8e89fd2662290ed31824e2467b2c2a2ba1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189004 Malicious code in quantum-norma-canopus-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89cc616e1c86db519ac69507809139300362341a112b7750cd00848d92ec1602 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...