Malicious code in cat-meta-stack-minify-try (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80dec973455eae025b75ae4a2fb66d3f693521c903c9ca3af246808867e0af65 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in async-dotenv-pino-pretty-odin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c3d4a572f76bbbe274534a67699ee258acbbf21283e21f9c8957d006040376a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188228 Malicious code in neptune-sqlite-cordelia-cypress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2d6377bbfbcca851cfbaaa8d0d636f6b835c87f03e0c5ec20cfdbb33a77490b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188388 Malicious code in octans-cybernetics-carpo-norma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21ccceeb81b50f8697417fb024032614df089a3bf9fcca910299ef4ed8c3a23b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187905 Malicious code in magellan-neptunology-extremophile-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 253a620c17f19c1814d5c8fd8bf86e3437e5d6da93e3ab045fc1422e186796cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190104 Malicious code in ursa-comet-cosmogenic-virgo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd11b0b7a1927f924e9836d71f861f050ea05f975ce2f6fb00a09cfe62d5135f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188658 Malicious code in phenomic-prettier-stylelint-development-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98e01e9e7bd3ca58db60522d781d1eb1d5bbd8fc4776327cf8da1a38e112b2cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189298 Malicious code in runtime-short-fork-yaml-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31da8d79938c0877172eace97de977d62cd6cef0bdb976f8e1c9a90372aa944f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yaml-barnard-jekyll-magnetar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 647bcb1618cd7231944ee6afbd42020458061895e8490b3d485d6225634c630e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lambda-byte-sigma-static-reject (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96e512f773e77c8591c7fdc12e28652a7c98180e468e2eaac0b828ba21c83918 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ganymede-levels-changelog-norma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4be57e2d19eef99afd220a750db064df4bbc79106573179cd8f3529f363bbaaf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185804 Malicious code in big-star-kappa-alert-report (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 277bfd448c229fdf8fe8efaef8c464ce08c287881a335bccea1a5f1dfa93ac74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187855 Malicious code in long-boolean-table-compress-tree (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6ce61b95ca11c80fb5abda226276f953078eb8f6cfe963270f6034d758b6b22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186586 Malicious code in dione-dorado-apollo-mongodb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dcbc7931eef29ac5c5af7ba06802424115895cf2f3b63f7ae23d400ffbdde7e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gacrux-dorado-impulse-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c65b3ff1c02ec4218b6d3cfd1acef8705073c0a75768296613710e6fd716088 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in typeorm-indus-restart-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59684f7e8948ef45ee9558fdd7a6b3e81cde5aac0835af604702b99536f71930 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in less-loader-gulp-yaml-crust (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a37ba6b2766ddc09a8955e32126156706d18cd48cf81fa1da83c4c563b856dfc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in shelljs-package-writable-jabbah (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f60830a143e445f6febb17ec8af079069f1883139d63dfad0461f1d08e9008a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in html-webpack-plugin-version-vulcan-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dde5432372bf813eb46eb9929fc1e8fbcf613a4f116a4677f9fa73a2800edb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mu-kernel-phi-transpile-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f82eca8c24515f3f57b6ab4d894be6fb0ac396fed83700b9e8795624a47e9f01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...