Malicious code in key-kernel-transpile-test-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a52a484d28ce1ebc6b67317bba20eae6af92f4599233593aaa92ff14e137a0f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in awk-node-public-interpret-cron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e72184d33130eb0661746bef8ae65da6a9d81b8319bca387ad8374ec909da7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wind-char-function-resolve-enum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f350467942a4a8ea041da2a995b65503e5774b4faf4936634f965be557a5c4d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190170 Malicious code in visualize-cache-web-float-slow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3f7f24dadcead52f45d3b13c1e58579d94e0015bb0a26dfefe06ac153a45caa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in webdriver-mocha-chromedriver-javascript-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ff18fb79385e40ba330557cf38ecb7cb89a1f3b9f6e2e126a10bf6dbafe79b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cassini-socketio-concurrently-forever (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e912fdb2bf197c65c430a9c9fbd0f8051136d3e5aec231088a303a0882b680f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in interstellarmedium-materialize-robotics-jovian (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50c99ad3a387f8afc1cc5ecfb4101a13af00275fe29c4b0986d1f03c8d44831e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sigma-file-signal-log-report (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e56f9455f2e267b6923668bc3fcc20ae59667c62ffee139e2dfe75c84d11eef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in enceladus-sirius-radioastronomy-octans (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24f57bc69c731ec02e2811fda830912031459311f70ab51b01296169cfd7a5c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in enceladus-blitz-lynx-corvus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f688df47bd13d5e692984d772ab714e6649d97ff147beeca82b55bf73f3ebde2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186279 Malicious code in config-pipe-promise-start (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f02106f4c3f458d8b414958c8d64a06a816b5900d86f0c97e5f3832b61b9f28c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dorado-jest-gatsby-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3af9de4e8e9dafb88bdd63a361c5362004e17237ed4fcee7acb6bc660c15eecb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in inquirer-technosignature-slidev-sagitta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a80471215de05dc5eb8727a26889d075b75a02f35290f888d2beb43d04a1dc99 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189875 Malicious code in terser-webpack-plugin-nestjs-umbriel-cluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce5383d1d73e04c37c0a2d6b250a999810d40f5479e51250c1e31ccd8bde1485 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kastra-perseus-comet-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba13e6972332291be48505d01dfa79462dbb30b76789d9acd10da211473f2447 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in orbit-cosmicweb-meteor-wolf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55dde82c55c9cbfa615d585f3c9f11e6c6955df1b478397d7c72db9dee3e0426 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188519 Malicious code in paleoecology-cygnus-jovian-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5500c81461efa90c81a2aa2a1ea4cf6fbcc0a115124d9bc58b2f794f4e2f6b4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sonic-kots-fudvja (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e46dc343fea8389cf32e3d6ae79d04aa6b8a29ddb8fc30df91212854ae0ef69d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avangs-olioms-nolisfasdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9099ad984076c218a195b5657b2edbc59e8e157ebcf9f6e023bb566f755526c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185049 Malicious code in sonic-kots-fudvja (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e46dc343fea8389cf32e3d6ae79d04aa6b8a29ddb8fc30df91212854ae0ef69d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...