Malicious code in ursa-algol-ganymede-framework (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c303cf7884f70151ed9e6b5bf9c2c7e507450c13a216a7ce95ae230cb4f238c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in jovian-rollup-plugin-jest-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f53370f26cf3478ba29cfe3709afd2de86c87b49aacc771a6ad02106cda567c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in restart-protractor-quantum-pino-pretty (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 308e46b472bebeff2efbb1fbbf96060ad0fd6c95e3541493b9965e62b60eca29 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in apollo-colors-hapi-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30be78f711f92871cf9ef17406d921ae42feb235c2054887bde10f6c7e489426 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mocha-andromeda-castor-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 929e6cb843cb440dd09ec05cefcc35ae1d4ca70fdc73a2c735b543f582ccde8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in buffer-oberon-dotenv-parse-variables-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 349ea019c9a2411a49ded23e230d80740483a2acad4e82584b01da47613be386 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pino-pretty-comet-apollo-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce0fc55dc02578c07a1ca82888f7559c7f7490d510463dac842eddb8680878a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gemini-lyra-stop-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6de05007ded0357f96c6580f461bd2d5f802efa82ccee17f4206e5a4433c0b76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in apex-magellan-winston-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52039775c5083912cc2f65d59589cc60afe8445d9510280b6907bc13154e2861 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cache-npm-terser-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73495f3f6d6f890c5217244c23479680bbf04462af47a50c402ea11b7e78792b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in babel-auth0-castor-csrf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d78dda6dd9d98eba1091976353e8dee3850210f8c8f25cfca2de9027e312deda This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lint-ini-carpo-aldebaran (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 710073126339c59eb7484057356e51e3da9dc45a7611ec43e102dada5d735dcf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141790 Malicious code in draco-callback-gacrux-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ea8ba295da82ad1827008afbb037b09bcea5cb007076459638f4ec6b024ec56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139447 Malicious code in antares-vuetify-nightmare-request (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb05e72399b628edf6a0b1f2964386424efab1b44c0b544971072d2594867b78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147416 Malicious code in reveal-md-mdx-geckodriver-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1e66a65f7c92871312341129ec9fa61d291bde4e1563ac61a81dac4d5fb3e7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140447 Malicious code in carpo-kinetic-capella-helios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36738fd5391a2e0a3836541071bdde4fa6d1a86665a79160d7c8262aec63014d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143702 Malicious code in io-node-config-rate-limiter-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 930c2a4eb6c0a881eb361c86511cd96aead7d8a166d8915012d34c8a2e936537 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144411 Malicious code in link-jovian-sedna-heka (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4e11422ab4f0bb7873a8e3f4819ba7fd1b7e992231e1068d7521d05a91b9bb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141869 Malicious code in elara-centauri-ini-draco (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82f1ab2a055433d5ee1d938079bf058d314bb9f51c2e41c1167b8fe11d06fdc1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142884 Malicious code in geckodriver-taurus-foundation-procyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9c037b0b5e3cf10f1a69bbb0603617df035d7e565a5da2277b4ee9e340e269e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...