Malicious code in eris-callback-boson-cosmicsilence (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a197876be7cdffaa146516c71ade6fb43a8bf1e1cc1b4350b8a5ea0d8bb5a67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nightmare-europa-restart-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1282148b41a453d5bba2f2e2c6359c5beb40a47dde6f6cefae0d1cf108effa41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in standard-cygnus-quasarjet-joviology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb19cf1705ffb584bdc1a998b7a51dda974a3f7b3340bfcd9cde9529b2f87eed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zenobia-grus-readable-semantic-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf7f6afeae699f004a49669c40ec942ea5468412b503aebc4ef6a6dd68995578 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in test-meissa-stream-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e201ad4797f6c1d0adc706095b06d260333b5a1677e61717564549f492ee379a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sedimentology-spinner-gravity-blueshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f50f10b70db6417836bed5412cbfe199599d79c6e933af550fce08433b3db836 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in virgo-build-equinox-init (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9961e2c6deaa43a8d67fbb4833931e4dc8d80f69499fa9dc63c9ee7d592e7c3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186607 Malicious code in dorado-hydrogeology-zooarchaeology-regulus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84cb81d2f9006de02c80f2639b15652a181f70f10b8472afa9f18e90b375cd59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186934 Malicious code in extremophile-ophiuchus-rollup-plugin-subscription (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d5814aeadd2075aafefcfdf7e08fa80138940a6d61e92b031d99103d60885e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188662 Malicious code in phi-private-async-earth-xi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b930c14e745c4ce4165a894796d9879c130ecb462db863194881e2488a88548 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188708 Malicious code in pino-pretty-radiant-less-loader-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56f26e9ea5896df0ce372833130544656e3589f313b17873c4069dfdc07eab2e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187490 Malicious code in inquirer-resonance-stratosphere-zenobia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8045888615086dcf573d963c334214b9b8cb76ab93a54114cae959a94c16ed66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188109 Malicious code in mongodb-nodemon-callback-areology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 215ca53b952a9cf0e27dea22bbc2f071c70f3f2c8738b83de3625f453dec9925 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188975 Malicious code in pulsar-puppeteer-dagda-cosmology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c16f0f159690cf7dbabdfce738f01c9469df4d00633712fe2bd01c29f0b0514 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187501 Malicious code in integer-omega-virtualize-star-meta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f17b62eb52e500d6d763bcb97084f1de1bafb8b9176ec2a21c9bf2c0779b280 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188258 Malicious code in new-optimize-async-spy-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64b1c7a23fc78fcdeadaf377309af5ca61840ff7fca1e1debb675390e587536c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189163 Malicious code in release-it-indus-promise-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d26390b2e466ad38565abbe4463e6ef01196106534541f9ba58e2d1c0c397248 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188705 Malicious code in pino-pretty-kuiperbelt-vulcan-hugo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d01b3bf19da8542bfc975fdfb7a80d55b99366b0702f190de1439f1a90fa5fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188668 Malicious code in phoebe-borealis-vuepress-coronalmassejection (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deaa586f7a513b8036116d867f85c2889429e1affc2ab69c5e417d09987ff2ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186156 Malicious code in cladistics-markdown-pdf-helmet-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd738c7aa03702231879b831a4173493a9c29b30350ed0f630d5bbd30def03bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...