Malicious code in janus-jekyll-parcel-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e089175016e2fd98fcc7c70267365ac25096a7d0e92459ca5ba25280086f96c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in umbra-fomalhaut-cypress-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21e610ac0879d7d61e6f41f0587dd9f753775a9d82956e80f4a8a486ae1f56d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in halley-vulcan-nightwatch-nashira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c5ba8459812b58b3adb0a734a6bc6f6acbcea1e099036c9801ce7b9bc035bfc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148839 Malicious code in typeorm-chalk-eslint-config-geckodriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5aff76e9e3c4abaacbab53d2925a5beaf6123e1fb7c7b9f1188e19683a502889 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142906 Malicious code in gemini-mongoose-mini-css-extract-plugin-dependencies (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62ff2d997a3921a2cfcfc49b398c173f42620dd3ec2c30e47b5b83e91b550b84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149676 Malicious code in xenos-framework-semantic-release-query (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bcfb6a70cc74a7a285327bc1e80fd2bde9efb27de6de8ace88cbb4fd7376aa0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139227 Malicious code in aether-cache-telesto-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e127d6250ab54fadb00fbe77c714949f9d236ce7d2419068de687c499e213ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145861 Malicious code in optimize-css-assets-webpack-plugin-global-titan-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebe61f063ae8ed8ec92d894dc54ee9280ca3d23ea91ef6b081045d55199652a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148820 Malicious code in triton-mira-regulus-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42b1011fe9a27cb0c75ca7c8104767156628e1213a93bbbc953d3b2d7b7214a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147791 Malicious code in sedna-request-epimetheus-optimize-css-assets-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cfc4ec996afc99ef0c7286e1d678dabc38dbb28ae29ca34a2a35855556cca19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140483 Malicious code in castor-cypress-figures-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d75653f62b87ec0e21de68334b11a2163da7ee5b1caee696ad96d9e1d7b81d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148689 Malicious code in titan-oberon-restart-electron-builder (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80f54b199c3e81770e49604610ad75bea2f44c7dac5b78f4cb3c6f6a4ce64a36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141723 Malicious code in dotenv-parse-variables-gridsome-alphard-draco (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 628a27e67aa9b7cf1b20fc8c732eaf132e775a099842505ee4c045a2d1c99569 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142437 Malicious code in fetch-chalk-mysql-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4eb1790d821ab22ac99c85478c2c0c64e0fa842b8042826889b140dcf3a613c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149734 Malicious code in xml-relay-jupiter-ultra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c20d6a9cc34ca95f2b1723710465fc3398f80bd0aa4f0419a2f86ed70baae5e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143546 Malicious code in impulse-global-octans-jovian (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c0994ea4815ebd11f6226078d9a6c346e561085e6173eb701091797e4908a93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148858 Malicious code in typeorm-superagent-leda-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4647d217a21dc4cef2ad4a2cd3d26af951f19772cac97e0e79ac9d23abdf79d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142224 Malicious code in eslint-pipe-rigel-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 945b68e2b23a41cfec0080ab381b2aefd14282d4ee2b94a35c51bdc20dc5ea90 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141817 Malicious code in duplex-perseus-local-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c89edfd1d9823ff5760892e24d7c7e222e5826fe1bd7fed01a812dbdef635600 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146713 Malicious code in proxima-eslint-plugin-xanadu-jupiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79e1bff0b2371c9718a62b45c8b461c87c10eace4b9cd803171ec8c16ce0a8aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...