Malicious code in table-old-sun-await-decode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fff252c7519516e755af569d60b67bb3cbe754fc47400f464b2f0a3628ac9d4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in solis-semantic-release-pm2-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25f3fbcd8cfd3f79b4077a30db2336a9949bd3aed84da84464d9498779874eb6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hologram-jekyll-radiometric-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34423c93c7a5b13e9f1e0d5bd862054c215574cb60b2d0c3c0fc097a038bc7d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in biohacking-release-it-augmentedreality-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28e8f051057f6ad408a29ec68c9629075445fc49c9abcf12e5c34962065fea0b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hydra-markdown-pdf-resolvers-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3b797c75fdfd25ea211ed69e79105dbfa687f29b61dee7b5781593c49413254 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gridsome-procyon-karma-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1936be28cc33fc6163682c5679971d9806a52fb6c824370102a60c6401e583d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in css-minimizer-webpack-plugin-superagent-npm-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ec208a1d158e4c6d43500fa2e73288eb7c5b912b4a3684dfe6633d3d33ce166 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in protoplanetarydisk-thermochronology-zenobia-multiverse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a758e62d1f343445dc19b0a564a18702d6a739a33dbcd10ffa4647fb31d66c37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mui-cluster-antares-nucleosynthesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09a79c5eb88dbf060771545f41472a61811c8817947e70dc0fc5cc821841efb9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188776 Malicious code in postcss-gammarayburst-whitedwarf-archaeoastronomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b56c9b24eb32595375691f99f8c8ddc7daae29986e1c42dd18f09dcebcd5a33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in asthenosphere-auth-andromeda-gacrux (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd65aac5664169f28da94ba7b0b9b5e1ddc284c8fb135b806e87c8c47b844445 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190037 Malicious code in umbra-farout-barnard-redshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3deb299289ab58a5d665be2d8f00891334e73390e4ea998ace64dc54f4c5613 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188257 Malicious code in new-mu-sigma-float-visualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fa21d505506eff18701f8090ac5bb4a82a953082bf6a4a64fbe6fd639435403 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187509 Malicious code in interface-iota-tau-optimize-bundle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b927af0512416ad1b31f98ffedf703e447bf20dc26407cc26a66d63f8cf2a93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189105 Malicious code in redis-adonis-quito-io (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41a0183bd790182547abb66c6cb1d87d4662fc8e6fb33902450674e1e1a5eaea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186699 Malicious code in electron-builder-kaus-non-blocking-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc97f9ddff3d836878325e761ded0213655d4240acbfa676ac68ebd722f29c61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187397 Malicious code in hydra-duplex-npm-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24fed9db6f3a16972cd99dad61d1dcc7b283267059869c88c31951910c5dc518 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188003 Malicious code in metabolomics-octans-soap-membrane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1129f0e41c2b3a17aa60e8ab3ae6076953be4f3882077300095a37d4d48c2647 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in geoarchaeology-archaeogenetics-spectron-webdriver-chromedriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d023e09a2edec33372bcdf7291dd928ab241ed4aa9f81604743121eb2b4a57a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cordelia-websockets-yakutsk-quark (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d647c58f0a661436c26cd8beb4a3828948c14da4a4c99f2bbe55d3e02b0c14e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...