Malicious code in stop-callback-wezen-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43fa92762b57b343fad2ecbf79edc792490f94879bf693116bb44049f18da222 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187443 Malicious code in impulse-eslint-config-zenobia-octans (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deb5c240efb3880d55b5185feb76739b337d22f572cbf7af950b4f7b7680179e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185477 Malicious code in antares-thermochronology-parallax-blackhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1edfdd0642d9a4048a8b1734c5efe86d4bab6e2ec788036da89cafd83cb23f0c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cygnus-tool-update-xenos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e6dda9b734db336089ca3b7e1b189859e059a4a50e2263aa85436870537b513 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in delphinus-ganymede-sadr-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bd9091fc6ac414ec5489f2792c694a2abc49dc516b02b637f49f5f797997770 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in odin-start-sagitta-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 878a783e1486851d45d02168357d90a0294a77ebd4be938cad78d29133fa59d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kappa-awk-deploy-simulate-encrypt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72ecfbadfec940172b0dbe19e5b6c4d4e3e2ddfd4b92f95aa5c3cdb00e3126e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189552 Malicious code in soap-callback-convict-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b4922425b583d08a372e377d0b2ee372ad8912aa2da5902301f4c5ec520af10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186919 Malicious code in exosphere-troposphere-grus-cluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a938b8d5f2c06771aa4f407892665e96dfd1f65f2a61835af1bc190e090aac6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188946 Malicious code in publish-antimatter-augmentedreality-hawkingradiation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0d5d6b123e34a8689a89de8c4284bac809a0af916cf5f51956e0bb8bcf35c67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187926 Malicious code in markdown-less-loader-joviology-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b33abc594c11799681690ea35aba4b890aa18ea246a46a6bb82181059f49618 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188801 Malicious code in prettier-plugin-markdown-aquarius-colors-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93e02a281f78f15c659fc2bc0017a1f4fc72c6e3519a06df0c8b38338db6ed47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186849 Malicious code in eslint-plugin-semantic-release-chalk-fusion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7f76b381638ad18356b8c8d18b10785d541bf3b50f7d3ed0032bd37f205212b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188921 Malicious code in proxima-thermosphere-weywot-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2244dab451a96c625aa78d793fcb3ba1931ffe5080498587c46c6bbf7f5a3d62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in server-redis-umbra-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70ad1596bcc3e80829a1c46d11fe776c209f88cc4388e02ed286d6ad1976e9e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mensa-subscription-antares-csv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d55c01e441ccf96182c4b8b99c8df823b928bf5f93c08e93de762a8921a7643 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in async-encrypt-void-user-upsilon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7a36e99ef3a68fdfbc6ab3992a4fba166028b2c2f3e8f022aaa922e249f7eb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in html-webpack-plugin-version-vulcan-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dde5432372bf813eb46eb9929fc1e8fbcf613a4f116a4677f9fa73a2800edb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in compile-catch-gamma-encode-resolve (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b8545b272f2cc1d5247f5d8fc850fd0c53e182c3852a6ab567e2c4e0085d24b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in umbriel-paleoanthropology-aldebaran-areology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1e427da85bb0ae94d10d4ccfc297f458f821c17324d49a62fba408aa7756571 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...