Malicious code in taurus-firebase-vuepress-uninstall (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94862ebe9cae28f48cd6ac9cdaacc12665f8dca0ecbb5426490c1fdc6f2693f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in orbit-cosmicweb-meteor-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55dde82c55c9cbfa615d585f3c9f11e6c6955df1b478397d7c72db9dee3e0426 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in csrf-eslint-config-futurology-sass-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5a957fe964ae606d4205b7b03e65f9eb9ed8a9f2e081d535bd4c9c5b04b283a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miranda-leda-polaris-umbriel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a26ac025f1dd1deb89a7e6ba3f1fc6a89fca74f70a01f227da94833143abbc91 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189924 Malicious code in throw-async-object-public-integer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10aa1d7a7d6befddd3451e86b4c9d3ff5167678967dcb13fa5be0d980ffd643a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186027 Malicious code in cat-air-xi-slow-visualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fefed3200aae9b03b2b7c8bfb5a00098ddc2ba15609c9a4286de08a7b8603e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187305 Malicious code in heka-markdownlint-rollup-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3918091bf1dccaa7a82585cf98bba21f487de7dad3e092c4d5f4c7b1b3c7e9ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lyra-archaeoastronomy-graviton-altair (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8899ed7471e985e84376208e83bc674a3f185c1387225341796fa134880c727e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in janus-sedimentology-higgs-biohacking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d85c22284b92d13adc9467f232e0857fa609fb731d979a63d2b9deeb917c846c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in visualize-decompress-finally-abstract-final (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f96eaec8af9fa8b01c9bdf1bd478313f22e297e828753a7e086ece4042c294b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eridanus-paleoceanography-blitz-elektra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb0760eec369a6a11d2cab8c3756d2a182fb378a1df24edce74a41659dbbafc5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190147 Malicious code in view-deploy-scale-promise-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96480d65642dc0564974939eafd6126129e7f8b4e9c3845b878bc9244ff62916 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in panspermia-zenobia-cryonics-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1d62b4d8f6f507350616a579cdbce18a90c525a7b7c57f5777d99ae7a748c40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in void-fork-zero-log-code (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4ac8089953590249766f726a63f5ead6e566d0bcd669c5993f683b1d91a99ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187352 Malicious code in hexo-duplex-xenos-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa1151ddade4025065c48113f1079d31279af60beb4be33b8708bba930be0e96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188039 Malicious code in middleware-exec-callisto-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60905c35a7066f9f04d69342a0d5643c9cd2ddcecdc2b3cd3e20aa82208a84f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in key-tree-cron-serialize-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ff78953ae8c70b79b3faaea4d21dacd0a7182c0942619a5916fe974dfedf448 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in library-bellatrix-cli-cors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc1df04aae6a025d35e24d1c99352e79b2f30d9b4b6ff361adaaeeaa36618854 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cross-env-cybernetics-juno-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84e927b05908edd9f55a265b28a707a8243c20578740178fe8e88c376112d958 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189851 Malicious code in tectonophysics-transform-crust-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 362c7a3c2a387c1b0b23c2ad16e0ff6e12215ac224b7fe3f752d831110cf1fcd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...