Malicious code in zenith-cosmiconfig-miranda-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06eda7674a79fee6c5be9c0b91dd719af94d0685f5badfb5a22f5c6411273b28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186526 Malicious code in delphinus-miranda-postcss-loader-chariklo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd0bdf76910544de6f7f52a3893e80a33923959859d77b7bb710fdc4a41378e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in book-data-short-index-object (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50c5c6f6d40efd3bef72387801d8203eac1923bd99c9bf12dc04fdb66c1ee20c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in geodynamo-stop-hexo-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eca0a2915c66dd42a7b4e7dd744b1a10f4f2a0085b8213be501a8ef39cde5d35 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in index-grid-unix-long-kappa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fd6010b07fa983c3e40a12dd19c6d425704d8d363446d1557f67e28cbcc8d3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in interstellarmedium-remark-procyon-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b67edcb7e03c7978ec0ee60312c057ae5dc8fdfc867993b5b2d333ba060e48e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in arcturus-run-script-hydrogeology-gatsby (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85308b7f547a69be0ec866ce936c922952149183b16feab778b8f5b68c64d58d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190204 Malicious code in vulcan-astrobiology-wavefunction-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f48cd42be9a2a6be3b8e905ae225912535c292dc4b693ff78a5278eacad6bb8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in release-it-indus-promise-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d26390b2e466ad38565abbe4463e6ef01196106534541f9ba58e2d1c0c397248 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in thread-monitor-async-omicron-optimize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 061a9053ababe92204caba04969dab4473e5750eb9caadfb4089a4ccc4449c5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in catch-bash-string-long-catch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b18aceb03e40b3bd501d752301e1b8db422f9568a508eb687cc8e7084d23656e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186221 Malicious code in comet-perturbation-testcafe-astrobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e462547470bd8d605db068ddab1aa784e3364768af7f6f5f9b691f06acdfba59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in development-xerxes-dagda-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7042445332cc153f5065a7dece3340b416923ec1504216b77f9ecb81566a7d5c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in taurus-bootes-jekyll-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 143f6c7625fbfb9a7c5a98d8a3fc9b941d370f32ba8cb403bd8ca68227b26de6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189719 Malicious code in subscription-asteroid-paleoanthropology-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 918073041e550b5c69ffe7cd13c869d13b870526af47b743e03a6b1ae9f81efd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in resolvers-heliophysics-apollo-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60103abfcaa8fc26071abc38c8d81f1d5bd8f1c7ce82c117b98ee3f28734ac7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187294 Malicious code in hawkingradiation-jupiter-toml-comet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 093f597817c5057b6028054d85338a68c535363cae5c2a33fa92fb3c5295d345 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in odin-babel-ignite-abiogenesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbd37aa3a95860ce014237b274e8d7b3e67d3ea95f530cd7113f4e831ba94719 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185981 Malicious code in callback-upgrade-ophiuchus-achernar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02a0e7ea27c39c0994bad0e12f99255722091fc3c0df8286c617e33cbe7a8d4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-181678 Malicious code in astam-ift-dinuhkosuhgoa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4681022783bc3962752a4e089b2c879e733b1977a0e1bbc083ee49de35e8768 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...