Malicious code in ceres-petrology-callisto-shelljs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ef236e8eb1b727325a3aa33594675cd45f7056b4eeb66de2ec6f4c3717e7eb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in duplex-parcel-nodejs-membrane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa06346c89852e6b9c279cbd0b49045bb71d5ff9157585fa04bc9c20fbbf44d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in helmet-neutronstar-xo-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 581f8b3bbe8d1d6d256b170ebe95f9b25932b9f70d22809d6886514f5a2936a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in event-miranda-rest-semantic-release (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acccf89c905da91626d03d95cb26599e6d673600757370009e4ae8d8b0962900 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186373 Malicious code in cron-kappa-bash-serialize-beta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53deafc5f542e358e2be400b3647937108a888871b1dd73316f4f4157605370b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189868 Malicious code in terser-sequelize-oberon-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ac1c00d3c960ca9febe5f3d2a666ce6739ffd7071f21f9b258edfa785a39a09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in async-dotenv-pino-pretty-odin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c3d4a572f76bbbe274534a67699ee258acbbf21283e21f9c8957d006040376a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190166 Malicious code in virtualreality-biotechnology-standard-chakra-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74613aae956535bdadb8769f8d54326831d730205494e04dc613a70612dada1a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187313 Malicious code in heliophysics-pino-umbriel-request (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68d13fa24ea00cdcbb15ac488921f9c6c192ed00f12f1b47d659992b4fd4f4a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187910 Malicious code in magnetar-paleoecology-tectonic-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd63a02ebd57584debf7685bc69f9275d88b6ca02b76d34b92344e2be6c0947a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188023 Malicious code in meteor-fermiparadox-pino-mysql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4475a2700a3887c2ee6f081004405d01e2a1578c2ef22298f54d0b30c7a1993 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in exoplanet-scripts-webpack-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30bdc2b9b37921b1329658051abffcd6a5a4c3353ffdf67338e72ac4d419e113 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in install-fork-mdx-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0174957ecf55bf2c99b8268ba710d14ed3780b9f42212194dd0dd97544865f95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gatsby-config-postgres-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da39a9e2fd7a04f5eb662fb6eef0160a78e4ec3832a4537c9e704e0731297736 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186972 Malicious code in filament-tethys-brane-upgrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd79b06d69f04ea8b0388bfa6ca124a65859009529152dcd4cb8413e3089e76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189834 Malicious code in technocracy-buffer-outercore-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae5d1bd386bf4f9a8111c62e518b2e370823fd957948a4bc87ccd3099fcf4180 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in materialize-cache-neptune-cosmogenic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85ce0c130492aae3151f1a9569559e73ddc5670f78a3a142e9f6824e03610e1a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cluster-wavefunction-subduction-transhumanism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d0e6bd0652b5e4d018e928834eec7a01faca00e01d4f657865eee6364dbb3b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190424 Malicious code in yaml-entanglement-radiant-geodynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1da11391afb2e291ea7a2a769eebd51fbbcd6def6acea5a2870be0adf561196f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in elektra-bellatrix-neutronstar-spinner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c4f90b5692e853c91bc5bf63fb6ee8aca89c7b606140be3793dc608467693e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...