Malicious code in table-old-sun-await-decode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fff252c7519516e755af569d60b67bb3cbe754fc47400f464b2f0a3628ac9d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in solis-semantic-release-pm2-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25f3fbcd8cfd3f79b4077a30db2336a9949bd3aed84da84464d9498779874eb6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hologram-jekyll-radiometric-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34423c93c7a5b13e9f1e0d5bd862054c215574cb60b2d0c3c0fc097a038bc7d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in biohacking-release-it-augmentedreality-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28e8f051057f6ad408a29ec68c9629075445fc49c9abcf12e5c34962065fea0b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hydra-markdown-pdf-resolvers-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3b797c75fdfd25ea211ed69e79105dbfa687f29b61dee7b5781593c49413254 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gridsome-procyon-karma-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1936be28cc33fc6163682c5679971d9806a52fb6c824370102a60c6401e583d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188349 Malicious code in notify-string-deploy-file-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 261bf5701f54f586ce80f4a7f1529d9420634df6bbed2f132ab18fb20a29fa54 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186699 Malicious code in electron-builder-kaus-non-blocking-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc97f9ddff3d836878325e761ded0213655d4240acbfa676ac68ebd722f29c61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187935 Malicious code in markdown-prettier-frontend-avior (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 659e8b9f5234bf3784b1ddbfde8f82519b786322f78a3a6131c158daba967810 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190072 Malicious code in unuk-uglify-js-astrochemistry-comet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f57906ac6a4735bb92280c00660dfe0fcb082121021fc0d695fd942e50c6163c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186229 Malicious code in command-bootstrap-exoplanetology-paleontology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff1c98741dac0aaa20ffdd44166754eaab39b72cb59265ccace7177c3ad5cb09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187811 Malicious code in lint-remark-meteor-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c7f5550866ab3d3fd105f2aae894229da93014e2557b2fd328e2703ba4f12a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185364 Malicious code in ablation-semantic-ui-readable-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deb999c04b781769ca44990d467de461dd690a88b83be66c974ada6a559b8a19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187937 Malicious code in markdown-relay-optimize-css-assets-webpack-plugin-neutrino (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 814d9c5cb9e62fb3014607e0cc8e6b132834d0f216d57d6a055d9aba26c110d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189160 Malicious code in relay-yaml-markdown-cosmicsilence (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2804d65b350c1f98add4c04d9c11ee7b1b0bc7976d3ed0fec988f95918a1482b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186659 Malicious code in dysonswarm-gulp-dendrochronology-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df2900cd899be02f8b927b3a22067e8f4e1e87d3b8ee57a7ad44205167f4a2bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186018 Malicious code in castor-andromeda-izar-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 027b3780e8cb8f474f542e216188b2492653d88f8d778554b45f05cb0c926bee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187505 Malicious code in integer-slow-java-object-string (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b338bdd9293fa0282e2edf7b2036cf63e23e3c501b1ede7868c0ed601a40f6e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186035 Malicious code in catch-bash-mu-daemon-slow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31096c13f4aea6a88a542856fb5bca32be9585f83bbf33f7d5e4134637ecdbca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189665 Malicious code in steganography-aether-on-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a82bcf9484d0efd576c49a8f70274e7b0f9d424b9ac8f7f2c024d1aa3911a92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...