Malicious code in terser-webpack-plugin-andromeda-zenobia-pavo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1353b216b9be652df251b86f5fbd1ba87fb50094ee212a5f9118d884dc328d7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in awk-node-public-interpret-cron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e72184d33130eb0661746bef8ae65da6a9d81b8319bca387ad8374ec909da7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in webdriver-manager-stratosphere-stratigraphy-stop (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0934643185b5cbcc16307cc870692bbaf0a0c6ef0085d73916acdc478aa082fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in innercore-superposition-lint-staged-adonis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7abd4acbba5b074836858ec5783011c447065694a29b8d590667f5c6cfee9cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dorado-jest-gatsby-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3af9de4e8e9dafb88bdd63a361c5362004e17237ed4fcee7acb6bc660c15eecb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189459 Malicious code in server-callback-css-loader-archaeoastronomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71b3bec8505261d79f060d4853518f6e4013a766f0d6093c149d679f10912456 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188711 Malicious code in pino-remark-string-nestjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b520b204c8e7e77fc6e865fa0a5e72c01b32ad12f2d2d9390bd494ecaf08551 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190479 Malicious code in zeta-lambda-abstract-eta-secure (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b820d228c75228585ef00e24bee4183f5a0dff3ec86ddc4b9cc4727395b97ed5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189247 Malicious code in rimraf-playwright-morgan-norma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 605f4589e9fb73840fa4862f5d97c83687042c57fc5d073de4da60df0027fecb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185407 Malicious code in airbnb-mensa-geochemistry-husky (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 461789ded976ec21d5ed453dba1ce5adf24b99d90b2a96b833566afddbb99068 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189274 Malicious code in rollup-plugin-octans-fomalhaut-dependencies (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5af786cbe84ba8a4f35aa3f8afa89b09b9b2ad65ba56783efdc80335e5eb0fb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cz-conventional-changelog-blitz-steganography-lacerta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 730ff285678049eb66e80db3988bb6718e03f59c281d112d5768eb338419befa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in exosphere-scripts-halley-upgrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7aea4bb42453a2cc632f90552563951342c8c491a64f789d794a788c96d1b107 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in geomorphology-materialize-perturbation-accretion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f950d80fddbff7c9f345af602935a4448041c71c6e3aa0a96f263a4b8a2207f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hercules-local-ceres-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76d57167e63295d71eb4e13acdee38c498bd82d462e3e2fd11611b1559029127 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in meissa-foundation-plutology-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffb74fdd0e4a61807045f718c99625afd464a52402ba71b86bbc5cdcccb57d78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in orbit-html-webpack-plugin-xml-docusaurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08fb8c907f7e235373242f869cd54f573229f75943e3b713df6ab822fa2142e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in prettier-plugin-markdown-toml-reveal-md-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ff999735f3feba34d19df5a1438749dc0508d8d6210fbc23713452c707547b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in redis-acamar-terser-webpack-plugin-deneb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6796676555503346950febf9220667349738f8b77d07e9b3bee2eed252988ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rollup-plugin-octans-fomalhaut-dependencies (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5af786cbe84ba8a4f35aa3f8afa89b09b9b2ad65ba56783efdc80335e5eb0fb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...