Malicious code in version-mongoose-cors-semantic-release (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2279c51867e3bcfa98c896e4759ccbe31ff9fb080811277a35107fc44962b9d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ursa-sass-loader-orbit-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 299b64b0af89711f6ace77bd2eb74ec7ee22b886558ad7c24f690a3b16389dd8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in release-it-eslint-nodejs-titan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d444f73fff49c045d0be36d158676f122863a24f8391209244c38f04cdf90bb7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nova-delphinus-npm-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 129a352ca92f6102c391ab9f3a557c8fee171e8222da3bdb8bb217a365212865 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144762 Malicious code in mdx-comet-vortex-karma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d646738d6d0dbaf2fb6006965a6ceaef683ecce9f15d049302831323556e933d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142139 Malicious code in equinox-xerxes-convict-ignite (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc8a218e391950bb7e213b36959360050fc42140f58484814757055dd9ca5a3a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141895 Malicious code in electron-builder-aldebaran-betelgeuse-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 549f931c6a986c413378aa543184df78de854ec169ccb0a68ffb6399b50edb49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146209 Malicious code in pino-apollo-radiant-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d5f932b5ebb57daa130c09dd46c1291c44a6c1335243a2913ffd76e0abde8be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146492 Malicious code in prettier-plugin-markdown-proxima-webdriver-manager-kastra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9dc5b75c820f660af7ac765ce748737d7029924367551e7bfb04127b2b8f42d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144892 Malicious code in metalsmith-vulcan-lint-staged-acamar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b00adaedcfef1576cbaa1825eef6a2fc622e44390a3c11db042201dc15ce9b4b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146197 Malicious code in phoenix-json-markdown-triton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7880f03c4f17c08b093bf7dfcb7a59a5ad90b3d3c77a715a8a9bc408fd2ca56f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142159 Malicious code in eridanus-wezen-module-unuk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db08aa8da6ac73487e2363d886d20ce680b382956c29cd219ffbbe067a61d4d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139903 Malicious code in barnard-commitlint-hermes-enceladus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c8004b6ca73f38ad76ad7c7d80bf57deecfafcba1ecb618d13d4776d066d13e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149477 Malicious code in winston-antd-corvus-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abedf822a8547ae8ecf50d68853589a4cc4cb7fbee11665ad0ab235d5085f9f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140044 Malicious code in blitz-enceladus-ophiuchus-kaus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 367e5ffad151138012cb4919f2290fdc248dd5eafaccc502f6fd5d421ba0c35f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139654 Malicious code in atlas-radiant-equinox-spectron-webdriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd2fb112ba89498f5c0a6d7095268cbecbe8befee373f618f8e4f0bcec6af2e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139472 Malicious code in apex-aldebaran-sass-loader-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df72001cfaa988d92bc5c2ea746cea8608e30c4aff68bfb47d95a8ecd76cd633 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141536 Malicious code in deneb-celeste-grus-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f133612cb4622a9ff368b70b9d7c1d3a32e82cb081c81b65846dc2f0327e20e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139271 Malicious code in aldebaran-charon-pegasus-heka (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 808b7e01fc3390efda5a9efa37e7d1917a9fbe55cd61b8a33611ec40ce69b373 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144370 Malicious code in library-betelgeuse-yonder-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40d464d999af81bcaceefdd858dd914d406dc75800c99c9aaf27487492862826 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...