Malicious code in cz-conventional-changelog-webdriver-mocha-lepton-abiogenesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7deb0c94ebbbbdb091059c3ba19584ab4654ae5392ebc9f3b89e7bb345c09a18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in transhumanism-auriga-markdownlint-canopus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94ca6b14f6e0c18b868134377c560103624d5e12334780667f4b5e1ff6661ca0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dysonswarm-loop-command-uranology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee1019e8fa74570eaa1b22a674d4869fc6cdd1fed122f53267d55d7dbaa65146 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in commitlint-slides-octans-resolvers (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 428a2525ab3ebc8ba2aeeb9ab46f2510a73a7eaff42b15ac0ac0ff63a719d922 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in terser-webpack-plugin-nucleosynthesis-hadron-taurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9369464ddb44df2eb49a987731c6b712db57570302fd3f325530a2afb053126 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in development-playwright-stratosphere-parcel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71e0ceb6921987d11128b3d9468cfe3777ed868bbcb9f3c382500437fb7f12f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in babel-ophiuchus-mira-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 291b6aeb47d975e9c581c055a5fc588f2982e746b1eb66b2ea5080cd10619df6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in node-sass-nashira-xerxes-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aac38fa2821b6fdc88b06b5e178d5ebd9e620d2b13fb68a8d89bb70c1efd4cb1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in radioastronomy-mongoose-inquirer-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98b90a3ad43fd3d17f857f0d6f4fe80c069a4b11b70c9356b9193d840d067320 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in toml-slidev-nebula-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acc9ce901d26d00fd31e986b417688de1d5bf8b92f291024badd653d3d19808a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in unuk-hapi-cross-env-nashira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d337623dc4dce49e5bb465b6ab727eee58fb69714217f60caaed1fcd72d1c14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nova-primatology-paleoclimatology-membrane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e50707d6a5b16bd335ab51dccc814ae5c912f400b88796143a03687f138aec4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in release-it-library-start-inquirer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 348aaa3d96cbbca9efb6a3b8e5c7e01f9bfc1413dce9e60070864b028329ab09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avior-biotechnology-supernova-bootes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19020e5530a42dbacdad9163999a0ff5fab22d68c589a21c45fbed8b3a1d94cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mira-fusion-yildun-css-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6df0ea3944c62f78d72d9a701c0e41295455162fe1dc8975371c9456810d08b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in apollo-areology-tardigrade-tailwindcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca645c1e73422a65c8b79fd047b60d4ad87534ee6dd87cc564d09d207e3ff405 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in antares-apex-robotics-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05283e2ac79402a444e34dc483cb2ef0709b9639a2149ee025d60b9d9c920581 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189017 Malicious code in quark-dorado-ethology-loglevel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9270626698c8706953e8ddc2fe61d99577497576cc954a81c95ae6ad4a0c625 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185866 Malicious code in blueshift-publish-carina-nconf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28c549f3f83be3a9352be7a86dc574afb8bf0d430bc7e01a82a70d38bfcde7f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187588 Malicious code in jasmine-iota-apollo-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abb148d7fe3af5383c5182391ac79de62170ac8d4404462c54639a8bc134a119 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...