Malicious code in table-old-sun-await-decode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fff252c7519516e755af569d60b67bb3cbe754fc47400f464b2f0a3628ac9d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in chalk-paleontology-quasar-taurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b24641a7a7948c44221b69d921a47de7c481a7594a92934261a4bd26cd30b58 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in biohacking-hexo-nebula-non-blocking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 799bd86e632988c28863335fcedc47e5fe32a6ec91385c1a1eb92d971ee62381 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in postcss-gammarayburst-whitedwarf-archaeoastronomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b56c9b24eb32595375691f99f8c8ddc7daae29986e1c42dd18f09dcebcd5a33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in antares-cluster-ursa-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d84a4b00a7033fc3fa3800a11c657e0a534a6b461ccf0deda2a4f531f6b3468 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in grus-eslint-enif-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2665229504a76f62aadc3c746199bcddc2405c318e6b179d3c086fb8aa5b480d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in thuban-run-script-octans-eslint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41bcd540d3089d4cdee49cf3fc5e84101e85b4b10116b145f1f13927a252e045 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in exec-markdown-avior-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a1422f2c4e3c9593d29f828fbdb6f4fec9411dbaf4dcae7befd206792eba11e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188703 Malicious code in pino-pretty-electron-palynology-bootes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b36e22f77ac97013a394fdfb27730769ada345b6bc823b6adaff00ad707efbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187000 Malicious code in float-encrypt-awk-dog-export (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1c90aa27b8b2e55c0c6642bc683065f853ef3a1db966142393bd9fc8f637f11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185414 Malicious code in aldebaran-biosignature-darkenergy-pavo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86ea8e131d374cb063a0b842043d6ab3be61a8a7771fcf3a8ccd89092e836b68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187036 Malicious code in fornax-postgres-phoenix-semantic-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5695ca34ea3d53ba924b7cf3957ca4a9b7c9f3c79a463ba9e5cf2c27dba36ca9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188158 Malicious code in mysql-cassini-unuk-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9073f9335c1be4ff425490df7e7f081f828afa71bed9769dd505b3c85f82688d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188124 Malicious code in morgan-magellan-public-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2a4010d8bb1de8e155f1dfe6a934c3701b7769ede92845ac847a3ee42879e16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187292 Malicious code in hawkingradiation-flare-hydrogeology-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6711499c3b50b9dadad3bd102d577f6ea2d023d26006d020d36b03b830898417 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186707 Malicious code in elektra-bellatrix-neutronstar-spinner (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c4f90b5692e853c91bc5bf63fb6ee8aca89c7b606140be3793dc608467693e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188326 Malicious code in nodejs-hyperion-quito-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffe47afcc4eb84693e5a1585a83da52d5bc58a56d4e82fc172e560abdd48700b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dagda-tectonophysics-materialize-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04d94becdcfffe52289f147971a2e0a66cae9cf2667f79896b09d344f352231c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dagda-geckodriver-perturbation-geodynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1aa898dd9b0ecf67bf135b03027d809bf8a597128a8fb16ea32387a5fd838ff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in alpha-view-grep-abstract-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a59d4ced0983d05722b6d4aa572be26e524f6f5a4608478d2b47cdfcd656793 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...