Malicious code in paleoecology-webdriver-manager-cli-outercore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1702a5ded5d7db3c4166a15a439a1ab13253c487e4124cb1374ba85b937cfa5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in juno-pyxis-barnard-perturbation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03ba7667bb839b545547f830a7cd64064ebb2ed6a65582c2229a5f9a02be6dcb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in error-fast-class-visualize-new (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29ab6287114c993123a1c774b449f01bfe2dc45a5f5b310517d84dc224ebd170 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ursa-process-query-metabolomics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d9eb276d7c42a3eb8d32f6a4fd0ec8a87d3a091523a686fbe495218f0f56f05 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in centauri-mesosphere-deneb-solarnebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d7fe577b56fcae0f18e8a9da6f6515f83d22eb7cf08237af200ee4ca5977f6b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dysonswarm-gulp-dendrochronology-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df2900cd899be02f8b927b3a22067e8f4e1e87d3b8ee57a7ad44205167f4a2bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in supernova-miranda-ophiuchus-resonance (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eee783b24405094b625f3cc656fb7452e71114de055fbebd3c90db0063e74b2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in quito-config-lightyear-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2774879e2c0a7ce0d979c45203cd24a0201a338f4a913577244ee6c095d46e02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in daemon-function-throw-file-dog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5a73e261a4f17a185bcca6a3ab3abc503be436cc2631043966eea2b64c29a97 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cressida-vortex-lint-staged-blueshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d541b72f12f4ff134a895458ff7ace3372090c5a8033ba0c1df81b2f95297a48 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in xenobiology-electron-deneb-rimraf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95d8ef715a3d090ebad1f5c4179df9c012946cf224baf6da20e70544e333058f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in scorpius-version-convict-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27986efea5940e143ef52f332a5839f8ce777e19093bd76077e52dcba452c9f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dotenv-safe-norma-vuetify-paleomagnetism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ccad51f031eaa94c4ba5ee1a9ff854e2f73daacdc4dd9892bd11978d178526b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in visualize-cache-web-float-slow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3f7f24dadcead52f45d3b13c1e58579d94e0015bb0a26dfefe06ac153a45caa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mutation-exec-arcturus-gulp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 482caf12c32414f2e9b669998df2ea4c0f636c61aa2294ed275285eea1b96a5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190317 Malicious code in whitedwarf-fomalhaut-nodemon-pipe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 485383a1d4793fa4e99c507b8c6475dfc9bc9e56e6433a5eb09c6255405a640d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189017 Malicious code in quark-dorado-ethology-loglevel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9270626698c8706953e8ddc2fe61d99577497576cc954a81c95ae6ad4a0c625 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185732 Malicious code in bad-grep-web-private-cat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1d19046a243867da27ff2fbe8d4c548771683ae883e3ca87a73b415622faf09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185383 Malicious code in achernar-zenith-ultra-joviology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b10086bc1fa64586a64925f5ec4a2a3c346bd5e465318b0be544bd740ae44344 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187710 Malicious code in kuiperbelt-nova-parsec-helios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5005685248afcbff87afc6c58f65d21755259f517acd39c3c946f53539dcf6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...