Malicious code in promise-yonder-lint-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bcc683c63ed5e1e96a3f977f18154776f0344713ec0769fcb379dede9262bea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in concurrently-hawkingradiation-tailwindcss-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2666bd2deaa384120f711b4ca42f1ee157cd1ece04e11132de099f8803437863 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in iota-release-it-stream-xenos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector baa57807101bbccb1ed65d8bbde73a1aec0b5c86283b35a5d44a29439362fb73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sequelize-slidev-forever-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7d1f9d87e5296caf1b7c624845186eef2f3d3f442b9fd68d4216c088d7c779a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in archaeogenetics-taphonomy-blazar-singularitarianism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aefd22fa7cfda1c1258d658da20bb019dfb96856f3a8392f197c7146107aa612 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in public-dog-secure-user-omega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89b3ecbfb521f54bc0a2e5f288dc76d1fa2de219c9ce457fa24196b94a7abd81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in weywot-wasat-galaxy-miranda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d83b4069b0753c07d3c79bfddcd91d26290f269a708d2f97e47c1fa9605c067 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ini-quito-stratosphere-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80addd4c113b2cc5947537311ac67c987723ef1ebcd79a98f25b63fe603be5e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lambda-daemon-cron-delta-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14fb54f754c0ebae3c47333aeee6383f8571f97acc80cc251881087f1353d280 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in janus-aldebaran-middleware-paleontology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6998a4747c3574968be2d1944b519bcfeee302db9a1947998792ab15a7904e44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in node-awk-resolve-dog-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb1468df818feeb3957cd3d617fb7772a20f5a04b3a5b7508a13d5e6f0396452 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in await-file-public-transpile-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca4d92450f404e35fd817bae135806fa94dcb54c32550ee158787b91f54f8b01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in blazar-pegasus-quark-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8fb562efe2576263ff6f9cee25641a84e3a8a489f30297ccb205fe5448defec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in long-class-report-grep-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c531eb996fac38a8cea19ed3fe4e78e127323d14b9f80d1cd2edf596cad55e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in user-root-node-transpile-class (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26fd90abf836916236fb0bfdf86638679a1ddca3a44139fa6e3a6462f6ab36b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190402 Malicious code in xo-castor-frontend-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 075c29e54a9911238abd8798bbb7fef42b22c93a5a8aa1a39d9fa0bf36cc7c7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189679 Malicious code in stratosphere-spectron-webdriver-deimos-dynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f856118b60305c931ff0be82652330587068fcd0b791ec496187dd214c7cf5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185691 Malicious code in await-figures-nodemon-genomics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a869a28f31c40cb68319afbf18203d968e72964b99a41e113d39ae9f9c6b6c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186959 Malicious code in fetch-readable-spectron-convict (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c63589f0ebd1c39360f807094399bb7293af123a3f30940dd806d287be6c8076 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188772 Malicious code in polaris-winston-cryonics-palynology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e5e7d42f185ed3a6589e791dac133bceb2f0d294c95c473ef0661645b658ff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...