Malicious code in levels-lacerta-entanglement-entanglement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16642552a6d597c86591a4a1cbb8f43b1ad3684cde6618a09349b8f72810b1d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in callback-xanthus-astrochemistry-quantum-computing (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e74905ae15aeed1f45edc675826a313007486a970d1f7ff6229b2fcc6ec21d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in terser-webpack-plugin-andromeda-zenobia-pavo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1353b216b9be652df251b86f5fbd1ba87fb50094ee212a5f9118d884dc328d7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in transform-robotics-filament-orbit (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65dfde16dd768ac14d658dcc5d9aefd9d6e5e79e6df9a61fe8202c0c895d6480 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in astroinformatics-ethology-venus-slidev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 226e9d3d2ba28c131f256e2a26ec85fb9afec9418f57e00d7ec0b300e0e98206 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sudo-reject-mu-proxy-fork (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71bd21ebc82601b1500c1ec0b38beaf261822f483579359312b433a31d3a139a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in browserify-astrometry-stratigraphy-foundation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 245bdbb5c5bf35b2ed8cce928d9902f8c580a23fb021cbe85fddc30550eb7c88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in boson-forever-leda-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3e04409940d60ba1bb1617b5bab2f58238f1ca510ca9c125244997903e6856b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in chariklo-babel-postgres-thuban (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 393b5965a6937405c9e5c9fcbd04f7ceb4037d5f924bc82461abf50350ff323d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in geomorphology-fermion-aquarius-oscillation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a5dd8df67636856b60e86272fa741e198eaece85c5f95e6c79aa5e1235b8541 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in iota-aether-hawkingradiation-augmentedreality (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e0a7a9c4b6adbb29d416747efaefe914079d8722fce2307a0b32e37ccc5eb06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yakutsk-luna-nova-triton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1247a887e7b5c2f9fd964d4f486657e8b0b2f0cb3db19d32b6971e95515ac6f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in install-enif-blitz-supervisor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36141e3666f8c066649d564f1f74956d7c95b2120dc6f9c0abec69c4a3bfb1b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in protoplanetarydisk-thermochronology-zenobia-multiverse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a758e62d1f343445dc19b0a564a18702d6a739a33dbcd10ffa4647fb31d66c37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dorado-hexo-sqlite-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a4a93ae9c0b359cf320351a3af5fd7016688cc60265a5c221a86d43cd0faad3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in superagent-loglevel-stop-rest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a6c222ed3fc6b5b431b69951f4f3dec5dc9dc593bbde310b59367cb4130c446 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in execute-java-short-cluster-bundle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0078f37af1918262289019391ff05bf9d93d02c69489efe7d3c4cd18bc998f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185561 Malicious code in ariel-markdown-arcturus-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f906563d9aed4a7980a31a32bfc6ae14daf13ed46d446a279c6169602dc258e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188795 Malicious code in prettier-despina-gacrux-shelljs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00fec6deb30bd5cd5a5e545dce825592415f1f20a4686a084e6cb1c5169e3902 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185405 Malicious code in airbnb-ariel-spectroscopy-ursa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b19845f065d4c024064f3ec180048657e93ef017b2ffdb1aac5409b028db8f1e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...