Malicious code in juno-uglify-js-tethys-thermochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca3b11671ecb29ff8f1e78656346b4fcd45de13ee2feb8648e6425fdce8d720c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in backend-crust-cordelia-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9abfdf4b11861c28b5f846e1b02a001c90a9a855d5563ce213d97013e6a36817 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sirius-phoebe-zenobia-babel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4e356e0189aeabe1d3533e01c5b8a0675f2e4f2b23acfdb7648ee90530adf9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in local-astrobiology-magellan-airbnb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a2c2f4a1059031e0a45ea178d7af7eb11800fc2c6f6b0f385b866faf57316f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miranda-yildun-zooarchaeology-bionics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aeb6e52bc7a803ec59fb5ea57adb0ca8c9134ad7981072a5e09e122835a6c2e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in repository-reveal-md-multiverse-quasar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de52f7052500891977e9b92278627f7cabde231989ddf59ee96489c8f19bf65a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mdx-callisto-multiverse-achernar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3374948137016d0fbfe8d61be9db1108f9bd36e373e2755a997e3a2e83819f2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185864 Malicious code in blueshift-lynx-dotenv-safe-morgan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dab58c5139fe550ec62331ad682959b01530abab6c25ee42eabc08fb386d1f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188708 Malicious code in pino-pretty-radiant-less-loader-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56f26e9ea5896df0ce372833130544656e3589f313b17873c4069dfdc07eab2e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188960 Malicious code in publish-vuepress-sails-foundation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8174eba67733225bc2a363540d7f5712c22849add86bbb13c447eb8e2266a409 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186506 Malicious code in decompress-simple-lambda-container-meta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a56f01a80d1fe9a2a4e14344b3a37f67f649c9c2f15d90b3604f6dc5c138e22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187285 Malicious code in hash-test-interface-emulate-file (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f524f1afedfa738d87c851fd64489dd7316326988bad14dff7db8b77e321a265 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188207 Malicious code in nebula-lyra-astrophysics-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87731194882f0a9904a010dc5c887ceff5fea966c6f645da196e94537a27f879 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189805 Malicious code in taphonomy-neuromorphic-cressida-electron-builder (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12c3f8ac8424eb2fd06c7645a3bde838a9dc858cb027eef1fa0343a1bdc4319b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186484 Malicious code in darkenergy-style-loader-style-loader-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b63bf79b92c5f6a95a6dce7dc164aa540cba55e4dccae81f7f45965620fdf7ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190219 Malicious code in warp-boson-callback-supercluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c95312546c36f2f246c3a72e1074b30f6d60280d986fd0cd2fc73fee683e7972 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189873 Malicious code in terser-webpack-plugin-delphinus-membrane-cryovolcano (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83f1fbd056f464401107ffa949a75c56dc9110b1b201fa564b844e813212402a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188386 Malicious code in octans-buffer-commitlint-config-angular-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47310359866ad1e902cf5ea4d54ed1da4c69f3abbcdb2e4423b5f5b5984e09c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187928 Malicious code in markdown-nconf-string-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8074d92510a28e3e6b1da7ca41610927761684bad1dbfcb169033072bdcd11ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185977 Malicious code in callback-kastra-wolf-abiogenesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb66d5a617c669b770ffbb95615634599f72d7c637d3c6e848b38743c7a75bc8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...