Malicious code in postcss-loader-oscillation-supervisor-stratigraphy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24c4ee8a47b6f72647c164486538c1d1765edb3e08b84f85ff8f0e12991b0634 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188153 Malicious code in mutation-dotenv-leda-crust (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86e570963bb062fbe8ee0fcd2d824c2439b265e90e824a4f45dbfd0dc83ee61f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186972 Malicious code in filament-tethys-brane-upgrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd79b06d69f04ea8b0388bfa6ca124a65859009529152dcd4cb8413e3089e76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185673 Malicious code in authorize-float-signal-string-table (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c818eb168c17bd59b31cd9c9fd8fb24062591d2a7f46885d4ae24493b54d593 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in solis-perseus-bootstrap-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66b8d59746c8916f2d0e0aa816776331f332804015a10f708950338801106be5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190379 Malicious code in xenos-lepton-cosmogenic-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bd42edaad102d51c7897f5f9f97d176aabb390e1ccf4beee36af7105a32ec56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in balance-dog-throw-balance-daemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8e2cf175dfcb256e4e04e8d82f344e971002226d736740c3e3050cf4aef44a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ophiuchus-callisto-semantic-ui-lynx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d65af75f6acff48d55a94e31741a5da41d9e26f8b607169d254ab4d96271cb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pino-pretty-kuiperbelt-vulcan-hugo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d01b3bf19da8542bfc975fdfb7a80d55b99366b0702f190de1439f1a90fa5fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189937 Malicious code in titan-enceladus-release-it-callisto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b123ab38f29699bcdc0dfef304058802d5bfa2d7b1952c1713eb14e5acad22fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189412 Malicious code in sedna-jest-init-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25e29146ae9ff359dd96b1cd1b095636278686695d62974a2d5867e6a74edcff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in warn-pi-visualize-catch-slow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd19017ae32cc4971e46154fbd9e20fc1d6dd2eb27e09eefcee04c2372bf184 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in subscription-nightmare-nightmare-webdriver-manager (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a7cc33633fdcb71ad9cde74bf5f286e45a3fc893122e6cba8a51fd7ffdfec5a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in container-encrypt-kappa-virtualize-old (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f797b4a9f89f991872b9512b2adfc5ff57180b4e3a26fdb86bc508e15a96a1b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189987 Malicious code in transport-semantic-release-cressida-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ad2ed4999afb8ac268ab70d6a37553264610fe139c6861aa22966b3183792fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188167 Malicious code in nanotechnology-eventhoriz-iota-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 102b7412ed071b1287c6050f772940693ab260bf2618bad4c6dd653944b1ce44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in blitz-nuxtjs-cosmicray-paleoceanography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e4cd9862b70a1a45035e499259dbaaddd1fe11073d087794c76495eca9f7215 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in run-script-juno-supernova-commitlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28d5416570aa5bf98628db20b38d6aa688ee1a11743013f75bbbf34b033fb219 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sun-thread-monitor-void-sun (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 047adcabcc874fbcf09307af5ef5c1dacf009d157f5e7e349936d9bae83a1fc7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in archaeometry-rollup-plugin-astro-install (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1dcfdaa9a4222852d826a3e0212b6a3584a79729124a8ff9ee1178222bb3de18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...