Malicious code in neptune-grus-fusion-sass-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39f6784c9cffab433ca3aba62b9f5c8ca5f88d292e84c7ef4b23324259fe740a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in perseus-lyra-css-minimizer-webpack-plugin-loop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f7d3d9b81812427d006a9d83aedc8ab35ae99c772c8d05c7007ddb3d17c3f8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wasat-betelgeuse-mini-css-extract-plugin-cosmos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f72c3967bfa61a9dcf238d33c4284ce2f1f41d6b3f850a019d161f7672cf5834 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188818 Malicious code in primatology-middleware-planckscale-install (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c06a16d39babc5b879b4fcd7ca4b45293e129f38f2eb2e9bbd4ee8da57d0a56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in webdriver-manager-bulma-pino-pretty-hercules (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94e2d2e422a2dfc3074f2db8f722b8a7a83c1486e51d381137823f71ec4a9515 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in schema-terser-prompts-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 029583d6bd02442384a67da12922a4a0daaac8b98c374339699e8fe7e844adcd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in loglevel-exobiology-eslint-config-rate-limiter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd7fbd22a1e96b35affa0f148afd128f06a5c0bb44fb6a1ee53d15e319543f2c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gemini-fornax-commitlint-rest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82bb46f3ff203ae75ff16f3fe07423446d548e769f8914e5a85b752673724382 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in postcss-html-webpack-plugin-enif-ultra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed318452e4290638abbef91f54d51d2d2f0ecfc9073c4d399951524680acd6f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vortex-auth0-string-holography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4b12f620e4fb06f261bdd80d409124bb22468e54001e0012b822d68da3e2741 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rollup-nova-wavefunction-rimraf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a71178046d6bba4cd289f92d4a80c4b5b2938521d5c4be7a784b9de70d0b722 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in commitlint-config-angular-graphql-ursa-yakutsk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd57c25c7dc8e5c5e65fec44158bf31a22298db16e48f9ab0afbce4c61fbb2da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188806 Malicious code in prettier-plugin-markdown-mantle-hermes-geodynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 080a6094cb7884375f29aa9c5e2b1692a4e86007d59d0244ff7830c5fe19973f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189006 Malicious code in quantum-rollup-plugin-neuromorphic-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e842fa808da7937b0ba24f0e329750b9b0226ba8c29e9ca9e50a21c7e0fc4f5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in optimize-report-pi-module-hash (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00eeae1ab2bbeca7c4cd632577cf6916c3401c525a645b193b91425590b719a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in async-parse-compile-sanitize-quick (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67422c824f3aa72587863ab29b8cf8aeb46cd13d5f23bb7977637d0717d8e92f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in node-sass-ignite-dotenv-safe-neptunology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 050a9b781ee218eacda2b8a1c6548f9f3c967c5687f7deeee2c178a223eab73f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186205 Malicious code in colors-nightwatch-antimatter-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45bbc42bfa0d26b381b4e233ad4e21cc124d0cba8b19be2bd2be1cf86e922a6b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188725 Malicious code in pipe-resolve-signal-uglify-eta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12c40780bfa0a60a0f11514d456c9de6b44db34fb75557dcc422ac8974ca8ae4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186608 Malicious code in dorado-jest-gatsby-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3af9de4e8e9dafb88bdd63a361c5362004e17237ed4fcee7acb6bc660c15eecb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...