Malicious code in cosmicweb-leda-sadr-reveal-md (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 270c6cc6b73cca0763aa3fd40890eb81c4f654188eaf7bb4cd3ceb9ded2f43e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bellatrix-bunyan-neptune-hydra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce65e5c0135f57c3166ec660e1cd8880b62f46a712458d94ef70acb875d1c3db This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lacerta-ceres-jwt-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e9ef158e3d8954448aae52a5a567e27d1ce378b34dfd354ba3f163720c80229 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in node-sass-mutation-cladistics-helios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6885c91a565b182a01da9b7068f4d8893253dd523b0543c925967026ab95431 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in subduction-xenobiology-websockets-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9d162d50d84dbe43de8e35e175e07f1bac8050e4acec2b8489426a438367ec4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eridanus-hermes-mui-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2664398dc9b5987135c7f0b48309f9a0fe148b2e57829465f8e0fab3c3bbc987 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rain-theta-thread-star-simulate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3986a9a02494b35678a795f640466720c5fe1b0abe17f68d5b83e94604660e84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in husky-build-toml-troposphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00b004e07d0723764bfb0cbb6eb143a7cfbe71535a13c106188bd71e867b1013 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186538 Malicious code in dendrochronology-eslint-plugin-andromeda-helios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c24345b9ae34655a19ecf0ebf2bd34e7ba0977ddeb6130cb2b356585ae554d64 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188783 Malicious code in postcss-loader-prosthetics-loopback-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51f9f63b6e2e1816f62d699a65d1f5b8c88dc6d76c09ded78c5dca4dcc42d958 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188530 Malicious code in paleomagnetism-process-rigel-ariel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 806c222b404c6835419bb2dc3e3292a0bfea544dc0e55b7579ef348d91329803 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185827 Malicious code in bionics-geochemistry-request-supercluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cac740f28941da0a81e3c884f0b32e4cba846dc3c9eb99be0b220455fa4c2bf9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190019 Malicious code in typeorm-protractor-cryovolcano-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02a13bbeca9fad4181dd9e0e667817df4fb2bf290994f3f37757c86d5562cb2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190067 Malicious code in unuk-hapi-cross-env-nashira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d337623dc4dce49e5bb465b6ab727eee58fb69714217f60caaed1fcd72d1c14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189301 Malicious code in sadr-corvus-janus-eclipse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 068cd6224c2679afa1600ed26617858272747c6b62a13b0ecf5889b1339f36ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187334 Malicious code in hercules-css-minimizer-webpack-plugin-cz-conventional-changelog-dorado (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d95fd0ce23afe24eb49a8592e43e5bfafbff1956c11ddcde2f1b53762931d47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186214 Malicious code in comet-cassini-stratigraphy-mensa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector feec7987471c96c90eddc25903afa8981be14519613bb15253dde49d844b22ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187425 Malicious code in ignite-configstore-morgan-kastra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8906d0c8e8c3c3b8deed98d2a4f08dad36cbf617d92d432626f92cb068681443 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186342 Malicious code in cosmicweb-leda-sadr-reveal-md (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 270c6cc6b73cca0763aa3fd40890eb81c4f654188eaf7bb4cd3ceb9ded2f43e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190479 Malicious code in zeta-lambda-abstract-eta-secure (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b820d228c75228585ef00e24bee4183f5a0dff3ec86ddc4b9cc4727395b97ed5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...