Malicious code in concurrently-scripts-plutology-nightmare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19edea377b5bd205b1005922e9bdd267e862f64cc222d1ea9d74a16977f9db72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in child-process-xenon-avior-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9f4f073cd819427d81027c4347194f2093797d2605e1e90dbf83b1979f7d03c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in telesto-spectron-sagitta-soap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bc2280be1e963104556f516b30bcb43fa58ce27dd58b684163c89f1da636b6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tectonophysics-sequelize-whitedwarf-ultra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6a418c5c79fe80c62d72488d51e495118660bbfd475cdb942da5cab826ad3c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in exosphere-innercore-radiant-cladistics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e5570fc4e3f2f9908698e3cb9b87896af167d7a106ca45f71acae469983a197 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cryonics-publish-dactyl-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8e8225eeaac0b8916a2b89b7dcf39e7988138e6e430c4f6a4730306f251bdfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eslint-plugin-eslint-sails-membrane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d9c8ddb23f24da56881beee4ee5fa6011c178ea702b512177758630c0ecfceb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fomalhaut-ora-cybernetics-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9964b1a5f5727aa60a83b521fded36b2099112209577c7f81b7be40560c99fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in perseus-cosmogenic-spectron-webdriver-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f58a08ce2390b39ba0775e86569c351f7f8c1ac7780c89872374334fa4a05289 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in quantum-pegasus-winston-blitz (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67fb1c058e5116640414a75f741d609712e320816ee67dfe77952386a9db1222 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in oscillation-aquarius-ursa-parallax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7127678160b96508d807efcfe044a57b7f9a9206a3c2546e146450bed08b547 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in readable-karma-xml-fusion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c0d2d3a27b749da169c991b93d852c67354e41e03611bad2d5b9db3647047e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in technosignature-quark-quito-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31b4042a3cb59a90e217d0c5be97bae397ae22e8022f27625c6ec1d06afecb8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in testcafe-canopus-graphql-markdownlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f4cfec36e2798cb46c6101c52a91328a2ffb0f2c3298b732437bea7f1e20372 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in authorize-signal-report-omicron-decode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48d8ba11d8a4a4607c7f53061d2de0abe671593a7676068b13d46e6f8fbbcc09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in solis-chakra-ui-comet-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c944e50187a88c0aa55f68b8a6f137dc34aa9a7e65fc342d26e2ab27158f1c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185705 Malicious code in awk-minify-minify-proxy-omicron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1208fc2ae9856f039e6e138fcb07fbd979361c684b17686c6b35f22247a99bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189607 Malicious code in spectron-flare-css-loader-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6a3021cdbe1ba768aeed367daffaba3184d09ca0b1076ec3c8fe83fc378143f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186751 Malicious code in enif-frontend-carpo-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7fc721aabd2d538e8644cb4667b0304f9635e08ed0d4c2a986383e4a2ab9e41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186804 Malicious code in eridanus-buffer-colors-passport (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ad0a6bb846c89ee43a940cc41820b10715f3ed75eab1b0d1947860b70767ccd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...