Malicious code in neptune-grus-fusion-sass-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39f6784c9cffab433ca3aba62b9f5c8ca5f88d292e84c7ef4b23324259fe740a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cors-warp-farout-testcafe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c13b58f1af8bf82671c841b76a10d8e68246dcd60737603893aef17271bd3c2d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in impulse-sedna-sedna-cryovolcano (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e69eddaae3c39a32407655f5a4a6db2137f9f60b9ad3397f4708efc948e94aa6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avior-backend-technocracy-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e4660f214d4b00c4b4abd3af9e79316c7f7c5a06984a4a7e9b4fde2a60140b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zeta-transpile-encode-pi-table (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 372db48429838467fa0be86a5ed9950434fe7964c97d1b228a5e6ba64fc23ce6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in protractor-hercules-xenos-webdriverio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29d84f5886e98b783c79bf948e8dc881b642d93250a3318b5a585f4336a1d038 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in comet-pyxis-cosmochemistry-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c569af556ff59c4ad698fd5569eaa959c1844fc58d83203d82b7323125fcb84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in polaris-typeorm-carina-solarnebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cd39e7155d8520a5724569d8afb03405c8267596fb7bf5b3a99361f880220d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in array-stack-awk-emulate-promise (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdbce20584aeefc07bff020dc5a37a22ea8e793ba0d39fe8c09d4da1bee7eb03 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in class-secure-function-transpile-authorize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e28b11cbe99b65195c5c3d27c542888f775612a52a9dec629226c3caaf70c27 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190346 Malicious code in writable-jovian-pino-markdownlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19f4b238352d52b2cea590b0446ad3e308f8dced4b1490cf8e439993646c0a9f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185987 Malicious code in callisto-europa-buffer-nodemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33f44ccada191c2458e1ca5eb15a396e16cbb99112184ce38c1fe81ce1a0e4a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189716 Malicious code in sublimation-orogeny-isostasy-australis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51b9ee30513c8d060570cff17c03985e8ca23757d8b81faaa9bb486c05f2696f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186472 Malicious code in dagda-ophiuchus-koa-solarnebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d59370b60f2bcbd1ca331ddb9e242a52c610a109777bc6254e561aad327d81e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in asteroid-cors-bulma-paleoclimatology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c757cc0677aa2f8229baf844fe4422f081113cf652d25c7447e2ed6db0fcfb16 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ceres-augmentedreality-iota-transport (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa891b4634ede31623bc0fcd42bb4d3d610a695e74ed18b4ad58f1634a9830dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in virgo-build-equinox-init (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9961e2c6deaa43a8d67fbb4833931e4dc8d80f69499fa9dc63c9ee7d592e7c3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in airbnb-oscillation-commitlint-config-angular-palynology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector baf800470a1681acff5740acba90cbf70748786015854f1268ff0cedb463fff2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hawkingradiation-mensa-dotenv-parse-variables-inquirer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58ee4465c470511ca5e9eeddfdda3cbd2e91351b7d6be3534042756782073a5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in boolean-zeta-fire-omega-lambda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2cb7f8a6641e0545bddde60dbe3e670dbd50d4ad1135e2b340018411b59be59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...