Malicious code in karma-deneb-umbra-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a97473185bef024c93924990cbe14eeae502c2bf156a233ff17b916ea9c0aae3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in process-jsonp-build-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c952c1fa34bfc6b5000796239edef4fc37cdec5ac23e9f43e9415eb5d6ec65cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ursa-express-buffer-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d80a167979bbebdf1747a6f8b1c3dd693c488a57b5fb438a0218ac2c54d051f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in npm-algol-barnard-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7afc1ddf515223da7330acabea06fc8b87301c4dea1c65047835d6e0e233f33b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lyra-backend-spectron-webdriver-prompts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fa8744f950b29de6fb9bc5a67d5bcba756474741ce43ace4730cda738ab0fc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vuetify-puppeteer-stream-phoebe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4303bb98a1d550e8a4711121441236381921c720fac30b199e2d777750f88890 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pegasus-ursa-aether-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b3883d3f8b0e6337de853aa12f51a368247945a18528374fe17fcc9da15d9eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in scorpius-centauri-europa-superagent (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fcf6a2a4415d58b5c60093c25d385b84511272149ac38e3a8500e2be1907eb51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sedna-leda-virgo-install (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 678811bc3418cea8107e8a9fe3f77efb20d7b071be856ea9696257f6c00d563a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sadr-oauth-less-magellan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6cd41cc24e26ec4db071c81f950a8b2f7fbb929edaceed842b3a51ef8fdfed23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tethys-enif-nconf-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 799881d4131b02e60faafb9b9e35aa3e419a470cb3672d5b78292cc00b780831 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143044 Malicious code in gridsome-hapi-comet-jovian (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8cd3cac8edaa9ec5304601d2065302dc6a788f5a38d89ce31ff3053d2f348b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148407 Malicious code in supervisor-upgrade-optimize-css-assets-webpack-plugin-mutation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fee6b53e9ec9c7ca4e8ae2677ff0aca09ba263bea30c7f030cd59a350bdb6015 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141567 Malicious code in dependencies-equinox-despina-eclipse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39c683b2a7d937899f8905e90cc2f46225ee2a5764154d6b399d88a67ce7d677 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145110 Malicious code in module-module-puppeteer-zephyr (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b903f0dbe26ac625de626c67bb566688e158ff9bacc80e7f4f8ee0bb7d5b7012 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145985 Malicious code in passport-pulsar-virgo-apollo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd5757d4b0a6c5a20cd44ab3ba2ec2ad4cf07172929c6efa42f03f1a9af2050 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in optimize-css-assets-webpack-plugin-semantic-ui-css-loader-mysql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcf85a0c6954af3220d830d7c9c1f03a4cd0ec3ab8e1d39a4733b5a32c012ab9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141067 Malicious code in configstore-wasat-wezen-ora (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66701c6c203fbd7db0e370552a5f119cbbb92f5de3ad0aaa4d68f7aa2d274940 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in convict-superagent-leda-titan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71af2c3d51c8ab2f3f8f9b9ea4a0bbf0fb1e52a90372ef96a0e8c2fabd93a69d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147815 Malicious code in selenium-sqlite-izar-rehype (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a8953c630b9079488ae498842bf4cff37440b69ff8f6b186fe0366168f2c841 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...