Malicious code in error-error-authorize-phi-mock (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b340179d411fda452870d0f9f487b221dfa2c4ebd9f2f2e93457306569405e42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in link-astrometry-gulp-transhumanism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4329a95dcfa0e1622818152248a41d94a3ba730de57357e0fa2c4f82e5e2950 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in jabbah-umbriel-io-soap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7df36b162f8d91918755f7eaa032fc52d97c8082a66c80df6541a3af2667c629 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rocket-fomalhaut-sirius-kronos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 344f2bc058eebc6954eb5e9126619426a4e49a9670f2df757ea7590314e6af3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in on-graviton-async-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90e9e217418751f17e867d92f560f0a7829cdbd6752bb5530d1d45989f389b07 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in quantum-uglify-js-acamar-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45ca996a0f37fec8bbeb92598671e30801501dc4df71a3dbf77130fec73874c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tree-psi-air-moon-air (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83074f704eb4e4519a481ac7f001147d60931915820fa8b068b512c76f180ed4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in biohacking-hexo-nebula-non-blocking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 799bd86e632988c28863335fcedc47e5fe32a6ec91385c1a1eb92d971ee62381 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in equinox-passport-janus-websockets (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3f11b68e3638d03fabface74d4eade1bc5f8df93eab7c0a224d47b29af1d9d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miranda-gacrux-stratigraphy-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06412ef9850be1e7a1ccd8f1007f1b16b41bc66dcde0d734ed417f747e5780c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in testcafe-scripts-phoebe-nconf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07e68c5cc63ecf1236bea18be4d8e0efb1e70538e8a54dd9d2010f86fbea1840 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pegasus-mdx-pino-izar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81b9b25739f729310e407971211ce7a65d98ec3f75743105e9c830595d96b8e7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in postcss-gammarayburst-whitedwarf-archaeoastronomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b56c9b24eb32595375691f99f8c8ddc7daae29986e1c42dd18f09dcebcd5a33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in chalk-paleontology-quasar-taurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b24641a7a7948c44221b69d921a47de7c481a7594a92934261a4bd26cd30b58 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188047 Malicious code in mini-css-extract-plugin-meissa-chai-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f10f238dac0f01e63a9ce7a8c017e5600af3dee37d61959eac17ea52e027d019 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186638 Malicious code in draco-cygnus-repository-aurora (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd48d72c64c9fe1b6b0f79051ba805240b950b7b00b9f6379eaaa50d6ef54319 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189197 Malicious code in resolvers-foundation-library-kastra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c05e9755af5296428d20e2af407f0a2bbeeb2519e0199e94b2aca7fc6210c71a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187487 Malicious code in inquirer-flare-sass-loader-tectonic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a9ac73491da4c0bbc3063c9fee7d300beb6e658c1d0164abc26edafd86238d1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187058 Malicious code in function-iota-sanitize-view-old (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76fafe243ac3510278853d9cf095a9d7a22248dd84e8aa86a38b4338859c3d52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187411 Malicious code in hyperion-hermes-version-orbit (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15cf735cb22bc6f6c69e8c0af04d9a49053ea95e2438caf22b90dd1226fbc2e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...