Malicious code in vuepress-pegasus-gravity-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2f30b9d98da16f6d11401b6e3f4e7a2a556ca0adb7e3e59cb98234cbe0a3409 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in webdriver-manager-dione-graphql-public (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c6fa48966204e7e4ec2f499960681d755ac463ce41b39eb2a6f9dc1921223fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in webdriver-mocha-ceres-luna-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee7a97f730f21cd4e2b8910f8c1586bab544db567eaa521c459296caeb2b0542 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in webdriverio-meissa-zephyr-convict (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 184ecdeaa3917c9291a5b535a0b3fc11bc061913eb43b8f6a9163e3a070e4faf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in webpack-chakra-ui-style-loader-proxima (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a2ecdc1f1c9dd4e7569cd2dcd1aaadc864953a62692e919a4d01de8ecd3e943 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in webpack-yakutsk-tailwindcss-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25825cc6a045d46e8a6a37b1471e8c3cecd611ebb0c739ebb6da4d03503de226 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in castor-spinner-async-pulsar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60a7ffb45dc2db3ff1f356c7e393e67f1de1d339af5165815c7bc65a9702f209 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in odin-sequelize-cordelia-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ede57c525fa64420cf83ee79e24cda9ddd78715235b24f77a61720b1a7045f52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in duplex-galaxy-postgres-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e258dc5e9b5fb277fc19f420f2898fcc42e171ed175cd5bb214e6b80bea57e01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eris-eslint-plugin-slidev-resolvers (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0320e0d702a39f689225390ed9c2d557b760f8f092af53cc00dbb747f1c95c68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in callisto-cordelia-winston-webdriver-manager (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21b5408d4585ed37f98fcf6fb078ab382491ab854e3e69db0c57fcc3be607c38 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in polaris-karma-hermes-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42f90b05b302362247d64cd0c5a11bb9f4ee4e063a4a21e562f0357cc4bc8716 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in phoebe-morgan-install-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab149e6b00233a3917e702b778911be536e064049d6f4363b601405122a9e30e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fork-deneb-markdownlint-child-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba93b7930e02ad6837f30249a13d5e8d223ae7bce1c99c7df9c99223d8c22ae6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in transform-delphinus-umbriel-pm2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc77480c85e2dc600bb9dd6a059ad4740573e114bceada95a408d31a4d3eea09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in aquarius-sagitta-delphinus-lacerta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d591d1973e0d501c44c5aed9f6e6e63246cb03c6205caaad5d1213a3263e4f43 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147943 Malicious code in sirius-config-npm-restart (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08bf75866116c886d6513c5ffb9d715f6f54cfd7a6980ebb2a1aed4dc2c7056d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-143053 Malicious code in grunt-astro-geckodriver-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d1be0f2bf539ff1222567468e6365afcb79ff15bd5b2b4407cf0121b5d75024 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147243 Malicious code in remark-castor-ophiuchus-lynx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9974665bae787c95a53b225627dbad7b63f5036dde9ea0330b70f1b73b5aa9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139618 Malicious code in astro-test-corvus-impulse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6382e0cad627d040444c87f7effe7c6a89f01da98d9d02c5251e2f3881960d02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...