Malicious code in npm-nodejs-umbriel-buffer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21c976dc4e8caa65dad055cd3ea3b6bd8738c7eb21895548d493f81de4dcd32d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in oberon-apex-react-bootstrap-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1970fde9afcf4aed637d9a4801d60378c96b21ba6bd3eaa788e07cea42a98164 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mongoose-jovian-prompts-bootes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adfc21902cbbe288d44e67e91822e196ee14eb461970003305eba5225b5ceffc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in loop-xerxes-markdown-fomalhaut (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector caea6f928ba904840092e84e5064e8a5fbe2307bcbf6aaa7c91b07e264cbb141 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in loop-xenos-config-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 572238a84327d4cc87f954bf26a61102ae7406d29afd2f45bea34c346d2ecdb7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in link-aldebaran-library-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fbd34c4804052e58bb8e2171574f6fa4264bdf835fb2a96269a81208d7d5314d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in jabbah-hapi-eslint-config-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e9b0ecf467e4e7f27d78ea151d34cd5034fc94e10302afbc83903eab71ff875 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sagitta-vuepress-delphinus-init (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41d367d8ce198d4ed18d5ae4e74bd0b2fee094c74ab6e4d57f7c7b2a7582cbbc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in venus-lyra-fusion-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5a721ad8bf9d0f97cb49ca80516f83abcfa1f369087036d75d569062d51ff5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in procyon-element-ui-uninstall-less (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5c9482de78b8db351be096255e8d470475ac1af6f9f421925c5db2d0e149ddd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vuetify-protractor-dagda-kronos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b637e3a96a8fe046e69b6725f7e6c57b244ed0b4bf061c54739495dabf5ee66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in process-nightmare-corvus-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8459dcf63d07e643ce12479580318ca479b9443183b139b99a36fcc6544ce78f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in version-miranda-eclipse-sass-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3c4978b95394eacc922e2d4489a6f58e988e6425124b0e7cb87434b45f0ffc6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in elara-aurora-yaml-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b510c3be7a7298f8e915c26ac8fb7d1fe488f01e6a722f87091f00c11084ea3e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143511 Malicious code in ignite-cosmos-nova-farout (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bdddf260c4fdc700866bb9a9454dc8bb26b7025a28c621db874b244adb44c16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wolf-nuxtjs-mira-spica (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be3258b064bb655bb212c29f171951d33033c240d6fe5dd0b0bc92e9898d2678 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149213 Malicious code in vuetify-loop-convict-run-script (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93f0e13049c0859e3dadf910abbac1dcaf26e8a326d775432d744e45fd8da3de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149691 Malicious code in xenos-thuban-resolvers-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50c87583f813bf3b289010d2d1fe63c705d1c7b1a54fd57decd0f17f40b0c5d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146571 Malicious code in process-spinner-node-config-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10975cf9d208a454c4ec8cf4c7efbfe081c6fb8ff9695c78c35d806391226c26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144219 Malicious code in kronos-grunt-sadr-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a77e858e6d1a107decdeeaae11b5f3cac7d091cbd8cf3627ffeb3de7918adf8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...