Malicious code in prompts-terser-webpack-plugin-enceladus-graviton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d053da0377a86332b8a332dba7d3417176072d80fee11937868c599ab833365 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187684 Malicious code in key-orchestrate-promise-mu-bad (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59256924c568dcf308f5c734603cfe4d881731bf328e90a65b1c453933e7a80f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190001 Malicious code in triton-radiant-epimetheus-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f37690579c85320317072d9cdc94e1053ebab4d6fe9f33c85656cc0bb9598f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189014 Malicious code in quantumfoam-zenobia-reveal-md-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27799202edd9df55bfa425f701a2e9f280f60f6af0265fd10a9ab55e7cc7d7bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185991 Malicious code in callisto-meissa-centaurus-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f8c63a0c53777fe89eea8eda0c1a23ede7780098a6b51851bf39db32c4c98f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188298 Malicious code in nightwatch-supervisor-hyperion-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1acf8297e72612fc42318e4bffb75532887d407ff062d75774073fb6cea9677 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190430 Malicious code in yaml-root-xml-process-proxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fa0f9574427b5738faba6baaace11a9da2f9b5a5f3797f4432fe01c3bdfead6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190424 Malicious code in yaml-entanglement-radiant-geodynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1da11391afb2e291ea7a2a769eebd51fbbcd6def6acea5a2870be0adf561196f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189633 Malicious code in spy-visualize-array-spy-index (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2812062483e1378c0cbd25c79bf5e7f3a8fc913a22ed9b7b8386e6e41e3d9563 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188451 Malicious code in optimize-css-assets-webpack-plugin-style-loader-bellatrix-prettier-stylelint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abc399df1baa583fe9c5b3c3d19473cebd1498ab6c0de46cdc1ef484368df6c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189918 Malicious code in thread-compile-parse-decrypt-air (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a7146ef933c1aa178443b1e6366208057596a2447d96deb31dc0f893f501187 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in regulus-xenos-yonder-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b135b3fdeffeb1046ea488a1df925b755f80e5b13d69521ae1c97a1203a438a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in castor-callisto-miranda-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 642a0e3b58478b1752d42ebe06e3728a14dd0d553d9e35c2c8bf429b0d2670e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in async-dotenv-pino-pretty-odin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c3d4a572f76bbbe274534a67699ee258acbbf21283e21f9c8957d006040376a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lithosphere-markdown-pdf-winston-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc6fbfe227af2797cf89ea184596ed69bc80870c57f08a1e421accae594ddd57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in chalk-cluster-nucleosynthesis-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2857e2f58732f4e737b5c115e17ca2ec106da05278448cb9beae381e8bcc151 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in convict-miranda-deimos-astrochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04db394617dbdeb6aa28e0264b9f8042468ed940bafb4b05d874fdda03d6aa6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in enum-parse-protected-kernel-refactor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0dbeea8703cb39fdaebdb0eae171d5530df87e6fb81440888d36ce34490e657 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sirius-darkenergy-selenium-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d8a88c1473d6d62a4e97fff41207584a1a760e37bfae59d36105075e63250f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in babel-babel-config-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e59f0ddc5f47202e4b411392aa267a1343447c1668f653954d176f31867bc07 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...