Malicious code in public-perseus-zenith-blitz (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1e0fda9529023a9e7ae60ebe50dfb049b2ebe3a6ca123f31ad56a1ef6721213 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sagitta-query-brane-parallax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78b2924afafc182dca7296eaa925db554a5fd90f33fc83a4d9277d5d005abdbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in prompts-terser-webpack-plugin-enceladus-graviton (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d053da0377a86332b8a332dba7d3417176072d80fee11937868c599ab833365 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in config-ophiuchus-levels-version (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d00e2b33ecfe6efa1b745f3dc70eb10dfaf23b6cf9dd3ef2b8fa29f57ea8fd01 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in docusaurus-callback-abiogenesis-mesosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42bd97b8e1ec351f3c30094833234126ca837fa785a420b0c9ef4ae12a84d81f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ichnology-materialize-neptune-karma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8666f837f68fd0df77ff7324fe8ee2c1b1d69f60347a007db82e8cd960b88272 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in runtime-parse-user-authenticate-runtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 164dbfef9ef242d560dd9d9d3dd6fd1c685123e8497af22e16d59bf89ea029dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in comet-cassini-stratigraphy-mensa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector feec7987471c96c90eddc25903afa8981be14519613bb15253dde49d844b22ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190279 Malicious code in webdriverio-less-loader-relay-venus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 236a87a5ae0fde222c2369416f4e498bd685c9f1cd6fb51b718a11aa08e8a260 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188185 Malicious code in native-rollup-plugin-sagitta-tectonophysics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00d49cf4e544253b65eeab4ed53118e7a101dca71f9c8857859e37df800820da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189765 Malicious code in supernova-eridanus-radiant-yakutsk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ee3338ad4519b8b64d9dfca4fe1ba0f2248713067c8006e90c89bfa27497b55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in framework-orbit-query-kardashevscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 143313a7ae8dac1e177b19d5f45c2056a89330f8ec31efee8e6eaba5a6c1f050 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in prompts-commitlint-canopus-karma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8b9b4e599ca550db6dbc682b5345b31e201ebcbf9b6ee09e1ad9b9caff0eb31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in metabolomics-steganography-palynology-deneb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94bdfca8a1b6545c0a7b689ad4e40447c83ebe94404a409df4c47f8aee747aba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in europa-lynx-janus-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6ce887dbc94c1be94b6425244b58969751b2008b1b2db5b16d73c4f5eba3420 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187240 Malicious code in grunt-ursa-cosmochemistry-xenobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58bccb17c4b674e6159db53f27bc72f3b0aa547f2c6e40f0e3c61ee22969090b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in apollo-nodejs-helmet-loglevel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03f8efa0ddd24ff187a77bfbf2653e94f12a622525a7c6ac90cd8bb470c36f55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in areology-eleventy-cassini-filament (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba97426e3f33f6de299e1fcfff8dfee76502d5f73058164cf60ca33917a24a22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in auriga-inquirer-tailwindcss-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a752fbbdd28692b5babc67fa080558ecdcad6bd9b3540ae0e2b90d54315ddef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in betelgeuse-metalsmith-frontend-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 790dcd2ceb700af788d0557c09c4d92c94916ec90b672e724cb3fcd64cdc8338 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...