Malicious code in zephyr-dotenv-technosignature-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6c213aacdb33c9710b0725f1700b663eb0a518bce1ee299951a5d392aa2e9a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ganymede-uglify-js-quark-dotenv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df50c36528c4a8e1bab4e35ccc450588e1ba30021f8c1a6b0fc5acae6fac685a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-128921 Malicious code in nina-nasi22-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba372e556e551c3caf2588f43279be84033514788f0598b5a401ec631055b4cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in xenial_worm_amethyst-50 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d814620e8ea30b37d6059bd57d57357234f0c1640f7c82340a6b00c1ee31652 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dono-miemee8-apidev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a3cfb99c3d066bdb3d8f1af9c7690ce6fe9bf6d284af8e48801fd598e9437f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in umi-rangi91-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ca9de0820d0713749d1bb67d0f970f67f14696a2973fd230f44e74fd7842601 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-55548 Malicious code in cici-martabak29-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a87950343adcff8932661d70a36d8c74cb1b50bf964efd5bfb4746dedbd7fc16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-58094 Malicious code in orthodox_pike_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d455e177b0666371018a0827bae7f3a6a16ea575cacd7d1ed6c0d76e93ad1eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-51447 Malicious code in citra-rujak19-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51d0a97b44053ce1fca0903c50fb728a2718639d001ddb4172be0e5c166438ba The package citra-rujak19-sluey was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that floode...