Malicious code in grus-prosthetics-stream-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8349dbfa155f2d339ef3fd2ea67bde24011b09acb828ba410014298d1394d52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in orogeny-quark-archaeoastronomy-auth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a619128ad4e67084b8c556c8d7546ed17745aee4912e9d3a87534852b863743 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in primatology-paleoceanography-mineralogy-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a547564613aed99a100963bdf0b3057b8aebc1084ae8fa5995b7d4b59157fb20 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in private-centauri-miranda-areology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cb0c2d671266707cddfd0b90b331766a59020115915d2ad62a7b52a0b450305 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186263 Malicious code in compress-tau-enum-book-serialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 011955a099f66e34708fb647958242177ccdf3234a3a83ae84802211bc3be1f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in paleobotany-nightwatch-epimetheus-spectroscopy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cae70f0bfb1be3f0979973d806c8c3f2e10038776a5df86823b05868b76e4d20 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187620 Malicious code in joviology-standard-iota-outercore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af8d63a4d4151f2d7abd0d0003f10cd383d8c15f82d151c121367037a69142a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187955 Malicious code in mdx-resonance-cryonics-geochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7acea75af333e29d6693c967fecafdc79642a14bdd49af2ec3e0b2428ba053fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185867 Malicious code in blueshift-standard-altair-higgs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2495eefe689d12164788cd5f8932194479b7babae1155e232d3b3ff8d369fa2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in winston-process-fetch-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f32310e6d14f06422f625862322cf64c1e6a08c795148c10b8a5c50e384c2f17 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in paleoclimatology-izar-coronalmassejection-webdriver-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 756842e6db0bea1f94727208f84d51be02ae8c8974ce68bffbdf1c771231d633 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in multiverse-pavo-dependencies-enif (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5bb86e4fc7d6abeeb8acfe3062856a25e160c76e9ab903a8caa83445b6660ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zenobia-zephyr-dactyl-planetology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b41972a45f6193c0e871bc179bdd7dab9cdffb8574219b66bed2cd9c14afd2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in passport-auth0-levels-biomimicry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b0bee65acdf68a6737b8995d1143686b1ef9027fdabf5ae14fdd070cbbf7242 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in comet-perseus-andromeda-terraforming (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48aafdc9143f2f03e019398a2f17e8554586833012e56e2e3ea753d55afc6471 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dotenv-safe-parsec-soap-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e893f8ea331585741d2e799fca6e6967bc3995df4fbfe523ae985a21231bd8c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in enif-axios-schema-biotechnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1aa20538098eb6552d01fad1a88faa22ff2b7e24c3c19f05a7101d9ebbf5dda This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in long-class-report-grep-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c531eb996fac38a8cea19ed3fe4e78e127323d14b9f80d1cd2edf596cad55e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in meissa-pavo-asthenosphere-aurora (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c245ebc6d662cd2d791c2a665a08b64c0ac325a3faea4ed570146f511d921147 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in panspermia-seismology-yildun-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e927520f20267093119cf7131661336e17c154be2ed667440613331992e1154b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...