Malicious code in webdriver-manager-deneb-nconf-outercore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5856dc3105bafd0bd895c339e371e97000f404e871ca844f86c47c579ae39d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hologram-jekyll-radiometric-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34423c93c7a5b13e9f1e0d5bd862054c215574cb60b2d0c3c0fc097a038bc7d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avior-gulp-sagitta-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d74a939914422a428ce54ff6c5a30cc4c419e3633552ab96d352402aa0c4b77 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190401 Malicious code in xml-sigma-meta-daemon-delta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9814f634f331ea15ee456dadfc2e7f1468d32fd0e4eb9ef64568b3b1466cec6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190291 Malicious code in webpack-quantum-babel-dione (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 980725b9c25bfa17ccd89e3880bb009f8c98c783a0dd7bd6e66cae551e1ae5bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187577 Malicious code in janus-petrology-sedimentology-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1954de2e091aabacbe5fefaabe6ea1065d082307bf2e67684ab0624e168e5726 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187506 Malicious code in integer-tau-chi-alert-gamma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a1cd603c5c21adc708209a0d027df10f306c25f9a5154091584ea043d57fa9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186426 Malicious code in css-minimizer-webpack-plugin-vuetify-ichnology-redshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e51432f68b706b7ae7c14c4afd85ef5068b6383f1eb97bea5a751ea91677a542 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189399 Malicious code in sed-float-bad-void-stack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5126830f08c3414052bb9e255acb3f6e710990f3876503be68642689c721e9e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in secure-old-deploy-resolve-encode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector edd40e8463e8ef60e60e2f721f62d52e42e5b10ad7481073017d47ad4d0616fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in typeorm-warp-procyon-non-blocking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ca2bddcca2cdd5d54a3bc5a9fccb0b9d6cece56e2654a5b6b065097d7536270 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in acamar-postgres-gammarayburst-astrophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29ecf76f6eed19dc4a932c5fb0c73b1416023f3c5ec20bf64050e727c997de9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in buffer-css-loader-draco-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f5ae31d8f1fe77a4535d4c2304e138491272c5692a24d0d9e2b9c8877d430f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in alphard-gatsby-commitizen-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa5b5cad41900c2a1a91c718854a886f4827fa919f848f476fe11be4a3347afe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in colors-paleomagnetism-global-unuk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c366c6bd8a589278cd1a92d3a0ae616ad4906438cfb8e95c8c0715cdb1c6d208 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cryonics-magellan-bionics-tardigrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f35509feb00c10d70419411c894a45931a339c14f56fd0b061b3718d5ae85a12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in odin-baryon-primatology-equinox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2818dc552c9cfc1b8556ecb96bea85e101159cbac44081b894801c548d0ed4c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lynx-nashira-heliophysics-solis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43a45c0b6f2ad44fec8b8cd437328119eff54f462c614ebca18f5aa3de04082b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zenobia-google-readable-paleobotany (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 858f7b4211ddae783c9dca4669d04a3d883faa28e83cbba2ae5494bcb0977e12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gacrux-dorado-impulse-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c65b3ff1c02ec4218b6d3cfd1acef8705073c0a75768296613710e6fd716088 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...