Malicious code in websockets-odin-build-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e72ddae6120c248ca7b9f4efad1a802437f6e57620450654b98681aca0f57c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-111290

Malicious code in meissa-pipe-dependencies-promise npm...

EUVD-2025-120431

Malicious code in winston-iota-pipe-chromedriver npm...

MAL-2025-146144 Malicious code in phoebe-centaurus-pipe-gravity (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a3a8c18f7ac238f1acacd09802476e050fd2c967e0bf88d0d81b6c9e94639a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140542 Malicious code in centaurus-despina-pipe-oauth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7412f390ed0a56288b73f2f3b4c82e88af73120b691359e975a6aca3e0cacf6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139336 Malicious code in alphard-pipe-hapi-remark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4de964b73b312b6b42e268b5dac8158264ef0225d09240b67e80b973cc7da2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hydra-pipe-lint-yonder (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf8bc7b83100d9034cd6ba13dcffc904a47fe59fa5d8bfe9e592b2496d9493a0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123933

Malicious code in passport-websockets-apollo-pipe npm...

EUVD-2025-123243

Malicious code in protractor-ceres-pipe-dagda npm...

EUVD-2025-123659

Malicious code in pipe-dynamo-nodejs-stream npm...

EUVD-2025-121565

Malicious code in subscription-levels-halley-pipe npm...

EUVD-2025-123654

Malicious code in pipe-query-puppeteer-postcss npm...

Malicious code in titan-mui-procyon-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1248ced1e49a7b5b8fd9186de24b120fdbed1c2aa66d43c5beaab197ec4d1247 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-111914

Malicious code in koa-pipe-dorado-adonis npm...

EUVD-2025-112156

Malicious code in jovian-pipe-pegasus-cz-conventional-changelog npm...

Malicious code in elara-rocket-pipe-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96ff2f73a968804fa97093b76b356f86a3c51d62f7c7b520c02d5fd837aa8eff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-115762

Malicious code in callisto-pipe-sedna-terser npm...

EUVD-2025-123195

Malicious code in proxima-pipe-jabbah-cosmos npm...

Malicious code in pipe-dynamo-nodejs-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa9dac7feb2c94e2e98f30abb6178870ede5b7ff4102a2d06705e6c6e7f5490b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pipe-query-puppeteer-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 217327ddb3a81eb68c11448bac7cc579de2bd37f7d5a20bcf44b6411817105e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...