Malicious code in config-ophiuchus-levels-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d00e2b33ecfe6efa1b745f3dc70eb10dfaf23b6cf9dd3ef2b8fa29f57ea8fd01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in blaze-antares-taurus-prompts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ad226b864d7c4e73ea785218719e45d19c4ac3acdb0c4d2a3c0530ff2b85350 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cosmochemistry-lacerta-magnetosphere-reveal-md (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08d0d5db9b30a391c486f37cb6ced3a4f296a525efa9c588f34a6a3845fe226e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in astrometry-halley-auriga-cressida (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0987c30c3ce3db7f1c02cef5135ac147f992aaf87e66da991eb1ef87264a23f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hermes-dactyl-canopus-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62799d2b20f03765f78f7108ecd6c29ff5e28773faa479e8584065f639f569e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gridsome-procyon-karma-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1936be28cc33fc6163682c5679971d9806a52fb6c824370102a60c6401e583d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in outercore-cli-concurrently-troposphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b76cbf6f2fe58669afa1ad61f6a6f611e0b68ff421df8477ef30eff21fd33ec5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189441 Malicious code in semantic-ui-redis-dendrochronology-run-script (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8d86fe46479392a59ae1b6014000b1675286c6ae85a50c9f04470b1d5626df6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188621 Malicious code in perseus-cordelia-google-express (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecebc93fbcf3aeb606dee2d52f301163a9c3530562ae4bc4d9ffc92e5b94d41e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188680 Malicious code in phoebe-yildun-gravity-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88e7f8707aee62cb3960c90f21928bae1147bd91c27fe32db5fe802a976e89bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190062 Malicious code in unuk-cryonics-gravitationalwave-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 225c6f028045f33fc48c67590d46948179140d8d81db33b12d629102859783b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189976 Malicious code in transhumanism-release-it-neptune-init (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d39b3f66ea8caa13effea3b58e8a9279c4089d79de52f175ab5a325c1df8faa1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188214 Malicious code in neptune-cryovolcano-dysonswarm-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55f65d6b8e5c42cddf9286d718e0a8cb42596b67738c40351857045aa7c2bf9e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190274 Malicious code in webdriver-mocha-nightwatch-cosmiconfig-despina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de3cfc3b8c341c20b4e8af0757b87d8eb021f0af5c7c338267d8024659a8cd03 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186625 Malicious code in dotenv-safe-pino-pretty-terser-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6e64067c125d9b3d36e5f8917125b76d88ebdb21d3b049d689376067d521878 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190072 Malicious code in unuk-uglify-js-astrochemistry-comet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f57906ac6a4735bb92280c00660dfe0fcb082121021fc0d695fd942e50c6163c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189473 Malicious code in shelljs-biotechnology-leda-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fff0216c7632714a5082db5bd4ff77f91c54337202724f125e8aeec7c3492c16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186653 Malicious code in dynamo-leda-registry-unuk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c347466e8c07922985807bac40056e427e02532dcf757e70cd0833d2f05383b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190349 Malicious code in xanadu-ganymede-thuban-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee9f8b8c8bd97eb72abbfb618a0776afb1768b178f6a5f06ba703621965be9f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186970 Malicious code in figures-proxima-sedna-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92d0b9329c538d56e5c03a9784fb71627128b7a5d0af3687c492dcdac386fa18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...