Malicious code in delphinus-miranda-postcss-loader-chariklo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd0bdf76910544de6f7f52a3893e80a33923959859d77b7bb710fdc4a41378e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in blaze-antares-taurus-prompts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ad226b864d7c4e73ea785218719e45d19c4ac3acdb0c4d2a3c0530ff2b85350 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bellatrix-bunyan-neptune-hydra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce65e5c0135f57c3166ec660e1cd8880b62f46a712458d94ef70acb875d1c3db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in astrometry-halley-auriga-cressida (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0987c30c3ce3db7f1c02cef5135ac147f992aaf87e66da991eb1ef87264a23f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in exobiology-callback-commitlint-config-angular-slides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d03030a05c5bd857db6811b031add8d86b357970bbd076059ac391ba964d545 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188279 Malicious code in nightmare-version-levels-mui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31a297fae66d552bead526aba85b7fe7db06f9336bc28adb7ec24729c055c79c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189208 Malicious code in resonance-middleware-octans-graviton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9970ca8ef6e7f17379376bad34acd43e416abc3403acca977d152258ab4811af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189322 Malicious code in sagitta-shelljs-halley-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c27d14c78f0650cc9e36a6a09704b5376e65f49f575b3bcc650e67f28f0dbb37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189173 Malicious code in remark-dorado-coronalmassejection-aldebaran (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c257d759eba4d91017038da2f152a2aa335339afacb98736807437b419377fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186671 Malicious code in easy-kernel-deserialize-public-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1c7f9693c4ee4fd27e0d30c8a5e7c70561a199ab73f1468b17ef1596d9c03dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in paleoclimatology-jsonp-troposphere-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bac983555254b679f31ae00e59e0bfcc51c843668160a92ba0b7dcdf8fc6e3b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in paleomagnetism-neptune-jsonp-postgres (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e00b7c4e427afdc185348daac0c7d3815042fbdb19ac15e8d7e848299230aa85 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in good-cluster-gamma-fast-finally (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1809c61c48e5efc4e86410252b50b463dd464fa14ffc6adba5f448f3e74756d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in betelgeuse-gammarayburst-puppeteer-rehype (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5130958447a541346c610348c14c00f249776c21a7f1dcc342652db121fd6f92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dog-book-protected-scale-grid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50e2dfc946835cb804fbf4f49f9dca6adcc7592bdd9880a1b5fc2f3e866af4dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in enif-blitz-selenium-sedna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a6263d90a50f469b364498e2b135964186baddc756040588a3c53724888fa7b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in epigenetics-cosmology-radiometric-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20bf5c56a9c6317de0c54037cc6cfdd980b74bf235b9dc3993359cb8469c2011 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eta-sed-assert-spy-hash (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aba02fba2294b944dedb22735bc1a124430a994c135af1e2b1361494f868a743 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in europa-loglevel-levels-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adb23e5f025e22619db0589bfdd3e0f01870534acb40e91b70a63bd6a2c90f08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in export-zero-orchestrate-zero-compile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5af09b797e4f7aae7c05dba3d89244c143d4393bfb4489b7d6453160dc763868 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...