Malicious code in biotechnology-corvus-phoebe-inquirer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c7d89363aa906934aa21323a9e5cbbcbac669a622cb76d058c5bc4794c9529f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cloud-class-stack-xml-runtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 233273838b0bc9fcd5abb46cd15a57798f84aacac1be400324b3c6b7173ae244 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in exec-zephyr-xo-izar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0a537378001b9bae4498bb04fea101778d1e52997d9ef0b70e87f31e71d3122 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fermion-solis-wezen-browserify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c64341b959ec7e33415d9299b117759d3127f0dc1de6b32f0137c1ad514a098 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hermes-dactyl-canopus-flare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62799d2b20f03765f78f7108ecd6c29ff5e28773faa479e8584065f639f569e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ignite-puppeteer-procyon-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 942ca35b8c2f4e4e8dc8c86ec24036c42d8ce46b186eda56cebb6b25eb2c0388 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in polaris-playwright-optimize-css-assets-webpack-plugin-hexo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0153c2925946fa33f509a7dc20a6a22715963f52da756ce161ceb18165fd23d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in publish-prettier-stylelint-seismology-cors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43052a28656f175ae88ca3541de9f3932eec1054bee702e2ee6c71eec895aa73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in publish-webdriverio-event-capella (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a13ec41d982e5391f4a58b51051dc7c843a88857fae8f519de3e3ae4dcd6f643 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in relay-neutrino-procyon-stratigraphy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18b46d1421bf767e864fb70e46a380881c11baaf943274c94aeff70da06d51a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rimraf-isostasy-algol-paleoanthropology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3481301405182aeda1f115cbdd839ab65c80a8048007b504458f4df9b948c27f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in spawn-corvus-elektra-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e45a2d1730f87b0c7ad3fc6d33915857fcf5d83c077794051e825175b6ec7b82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in typeorm-protractor-cryovolcano-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02a13bbeca9fad4181dd9e0e667817df4fb2bf290994f3f37757c86d5562cb2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eris-framework-lacerta-biomimicry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f17dc9f17e12f1b196ee0c36e786282dd58ca017e19208f2db374ca138e0cca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lint-isostasy-altair-less-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bc7c0466ae5d2579ed1cf9986ae80ed2df907eecbcbaf7eb8edffe3b4ea5d0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in meteor-command-warp-colors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8178667f4cc481bfbb71a61023a72f4c670447ad57a44be40c3aab68de2cac2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in stratigraphy-archaeogenetics-pino-figures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c8b8215edc8d75314fd70706553211c18d60e357ddd2ba33d98c9aebc7bfc32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186861 Malicious code in ethology-phoenix-unuk-tailwindcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 559be27cfb1ab2f6c01cd82e42610f9bb22a82253b37efdce765d9ca8e93c5ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186514 Malicious code in deimos-concurrently-outercore-browserify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ffa621761675fd2e3ec7b468f01d71eee4ac950beb2e51f7e89d5533a0a6b4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188916 Malicious code in proxima-nightmare-postgres-seismology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dddb55344319b54c55a9c4fc70b867ff693278f587db1ce1fafcb3b61df7e51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...