Malicious code in sails-soap-link-webdriver-mocha (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1eacbc309f43b7b1aa6ae69633d9efe8c8721438d82fdf6da228ed4f8738927 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in superagent-nodejs-darkenergy-fermiparadox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73b67272242401d13795a21648e9ed851a8a41d3437ea5e83936e4c11bf21703 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in encrypt-meta-authenticate-log-string (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7b652ac77988fd5095d31173051f104a9282bb6428032f99261ebbee04f6289 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in luna-xanadu-aquarius-barnard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbc41d7b808faaf60c42dff26f6f47331e3bd6a23a51389d3ae2a88c7c0f9c7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in markdown-pdf-draco-kuiperbelt-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 457f8521a8a18af9a89cd6741bf8aefb4c61856eadf34157ae8ec6dceeae7990 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eris-umbra-dotenv-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dbf7714f75abefdecf0f36cce8d8391b67049c271697d541efac035b1b66ae5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in array-public-code-async-decompress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c5125aaab20daf226f1f46aa858aa081d49eb3240d4c8c2c463b4fb8dbbc45e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bioinformatics-async-wezen-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d985ecd64cacf5233b2a1054b7e2ed5ced314f675ee6e190abc588762b03b287 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in chalk-mui-neptune-cosmos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 136b3090f7d6b067b36297ef6ebb55a84557fb83a4e61d63cd6cefe4a117bd14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in reveal-md-process-ichnology-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b3d88f3b3bcf3f3b98fe360b6e28a6e51a6c3eece1e447e88f1decbd0867a72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in meta-boolean-analyze-decode-cloud (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc9f12b07ea4eacded6b4cff311fde2093c73f60e91d1570a14fc533f8925ac7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ora-polaris-uranology-planckscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c94ca100618990dee2927e23b7d9bc5d41e43bd37867540cbad3756c8b7b740a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in meta-grep-stack-serialize-authenticate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dae18b6e45c7efca7d401af95f20cbd4dadd861d6526dbee1e4445f07e7e6b06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in plutology-ariel-subscription-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7586875995a9248c1bb0d69061389e43a86bfb28b5f8a11e6aef21281d3ed47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lynx-foundation-astroinformatics-geckodriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b49a81996bbd6e1261d788728d7f0c7cf8e8c72f897fafe4da1d2f8045bf2799 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in transport-technocracy-geomorphology-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 061f2f2422688244ab4bd302d32df2e932b85bf69b5dd7bd0ed0e5fe08dd862f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in xml-sigma-meta-daemon-delta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9814f634f331ea15ee456dadfc2e7f1468d32fd0e4eb9ef64568b3b1466cec6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190348 Malicious code in xanadu-dotenv-safe-markdownlint-materialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3910fdac95250d53aecadede785513f9beceed180e4330b90a3808d260b82a43 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187007 Malicious code in fomalhaut-restart-loglevel-forever (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2249aa4fd99b1a153ecd1845d37c0b92b17c3447a01493b2f5ef0609f04c1196 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187699 Malicious code in koa-eslint-plugin-corvus-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9921124b23b8c3333632e1a5ad8852823bbc42e2f37bc4ab4272265763d84cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...