Malicious code in ganymede-warp-astrochemistry-jabbah (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 647b20049a1713f442e3534e7043dc9015c74523dcd965708c39cdd9ec112639 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186870 Malicious code in europa-lynx-janus-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6ce887dbc94c1be94b6425244b58969751b2008b1b2db5b16d73c4f5eba3420 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186002 Malicious code in capella-yaml-innercore-hermes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 372f99cb9ed94cef8bc325e39ea217a894b8578a523b5ea09806bdeb8df4ca2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in express-proxima-websockets-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ee0a304fa501650f89077e1daec98bbd0bb5ef6a4cceac9cecb13c6ac45490f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in helmet-sagitta-saturnology-element-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8edf752315cb247edb6c5969349b45e0b64f798bc16720b9f806ee1b68fad823 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in halley-blueshift-sagitta-restart (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c1c5d6bfc2336eb699ded75fe930e0258ccd2156247cc13cfc2dc4064e9612d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189613 Malicious code in spectron-ursa-yonder-command (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11e8934f9f8a84c3ea9257ecf86439131845b5e98b2fb112a7de097e28279bb2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185617 Malicious code in async-encrypt-void-user-upsilon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7a36e99ef3a68fdfbc6ab3992a4fba166028b2c2f3e8f022aaa922e249f7eb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in darkmatter-halley-farout-archaeometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 569484454c1fc0558e70785bacf4dfa4d8c771fe71320d38c2ff8bd503e0ae21 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in airbnb-arcturus-enif-kastra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f91b89bbe011b4d3b3e04dbd89e0385e56a2d993d744a9408364b5c392d2b6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190446 Malicious code in zenith-cosmiconfig-miranda-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06eda7674a79fee6c5be9c0b91dd719af94d0685f5badfb5a22f5c6411273b28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186339 Malicious code in cosmicsilence-quasar-vulcan-gammarayburst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 866755da032f89e835ad4dcc205c1bb514c50448977117637cdb00b19af44d3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188112 Malicious code in mongoose-css-minimizer-webpack-plugin-spectroscopy-aquarius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a2a729962259a1b810fd5b3d3ebbcd7a38aca27aa52129940b9e07adc0b6483 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190325 Malicious code in wind-psi-zeta-debug-zeta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cccb1fbb789018c346a5f6f4730f72aeec7f3a6b735977e2c9cd571c4d32b0a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188583 Malicious code in passport-sirius-solis-quantum-computing (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71a8f5006fbc5c9299aa79ac0bee47f5264e1092ca09e1b946cf61a371cbb882 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189414 Malicious code in sedna-nextjs-baryon-ceres (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c372bfc802c3d8de2a8e6f537654c60617806df7468bb0d8680d7c951323a61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186733 Malicious code in enceladus-mdx-zenobia-blazar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99e2a80c789cff4acf26ba387580fde45a9aa60b2e20961dff463da98406a92d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nextjs-quark-supercluster-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a90d735c27e0fea07e309e14b317843ba0a808ca21036db6ca3f73fe52b2d01d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184457 Malicious code in modiov-kin-afudsaczubfac (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1223b4906e4c296f6723c30e3001c4e48c316b85ab5e3027f4e6479a7c9a5cb7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in imodiov-kufni-acumnacffgteafgrdcaavfhaebfac (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c6e9192a1f7b0759bcb577daacd5a88259a6361350d2d2445cdde6f5fbccee5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...