Malicious code in astrochemistry-ionosphere-gravitationalwave-joviology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2119ba76eecde671765855d9947d057698ac00abf631f90c033888f31387b6bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nova-chakra-ui-css-loader-eris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d33fba34563f447f01ce0f666ca1461181b88fe72fddd18a86916eea8ecf8b6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189397 Malicious code in secure-old-deploy-resolve-encode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector edd40e8463e8ef60e60e2f721f62d52e42e5b10ad7481073017d47ad4d0616fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189132 Malicious code in registry-ursa-prettier-plugin-markdown-framework (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bce70a60b982911ae8463ded8b5a8cfc5578f573075e24291265f231dd7d8f9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in resolvers-semantic-ui-cosmochemistry-andromeda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 324a909713f74f248bbd7d80715356b6ebd5ed9821a32c6b11221859883f0d33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in development-outercore-neptune-singularitarianism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3a9ad1dcbf47720dfdd87f637ee8939890ae4c1b9d6ad6d72da161239249d37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in aquarius-babel-nconf-build (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 367d06fdbae8de2b7d6bcc68f6b13999fc7160d92484baa01898cb3fd84acfab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in prompts-terser-webpack-plugin-enceladus-graviton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d053da0377a86332b8a332dba7d3417176072d80fee11937868c599ab833365 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in easy-emulate-try-psi-balance (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b725c2958c571c434e5ee27ebe65d6524758ba7da779226c50ea40f71bbbdba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190484 Malicious code in zooarchaeology-configstore-google-darkenergy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 685650e6cfa174e861e100212f50881c079171023d9a1a82afaabbba16bc6127 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188961 Malicious code in publish-webdriverio-event-capella (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a13ec41d982e5391f4a58b51051dc7c843a88857fae8f519de3e3ae4dcd6f643 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186106 Malicious code in chalk-supercluster-repository-morgan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8308f3d7c65ad1b1cf899c50d43219245550c86abbd2cfe3f0fdc45785ecb881 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in relay-development-update-semantic-release (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d662cd5ff8760a510c47e6ce2df1e9877f2621026be7db837ea4e53fcf873d18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187646 Malicious code in jwt-jwt-nodejs-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea2e66daf01fe913231340ad3a2cdd91b8d73f807dfad3ec9909c4c942dfcbff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187234 Malicious code in gridsome-enceladus-aldebaran-auth0 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ba47005bbad795aed1582ed6125855eece33c38e5df19b44c6ff5f44991e876 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188514 Malicious code in paleoclimatology-nova-rollup-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02798c4c1a995a4759454c6aea2a564c68e1924207dd426345f7fed7eb2c815f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187505 Malicious code in integer-slow-java-object-string (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b338bdd9293fa0282e2edf7b2036cf63e23e3c501b1ede7868c0ed601a40f6e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avangi-holai-inulmi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00789d98302d2d8003387a1c40cc86abe489a77fbfb7cade5372515c42f7d8fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kisut-diufg-d (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17d8944987f8e62b9b4d23e13855db4c380e4cd57bba6842aa7eafd2541ec6b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in modiov-kian-avumanb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf77c3b213d8dccf9ff9277aeb047c8c78be2172a6ed4cc9c73d2b624a683765 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...