Malicious code in wezen-mutation-ora-grunt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 785a2cd14109740cafff9a8e5b31c61ce4568134f9abfba94196cfe4cfa0d4d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in taurus-css-minimizer-webpack-plugin-ophiuchus-webdriverio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f8ad6a47a997ae581afbb207779a8920a2efac4fcd400cab0db5924bf8227ea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in publish-xanthus-cypress-redis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cddde1a52ce767fadb05cbd31671938c574d95abb54b2c3e13d2a133ea934da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in darkmatter-exosphere-exoplanetology-yakutsk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66fd91944b979138e05bf2487dcd84925f2788baa8346eb2c5452959746d963a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bellatrix-prompts-webpack-paleobotany (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff60d248263ba8c994d0355354d6ac79aeda3be055d3bc9944a338d1820a86fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in beta-error-rho-authenticate-tree (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30cc2769230687e6e7eada5a89a33afaecb48c332be1d59dc5e4f2b0ba46f3f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eventhoriz-perseus-semantic-ui-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36c8dfc94f09b2035ce23b897ae3ff76adb7eb115168d013c0bbd9b08398fa8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in child-process-xenon-avior-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9f4f073cd819427d81027c4347194f2093797d2605e1e90dbf83b1979f7d03c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in link-sedna-paleomagnetism-npm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89f83ee1bfae66dc7210489390d14334111a3890b2209f274fdf0e50672ecaf4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in paleomagnetism-callisto-areology-exec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72207cd3af55e9bbc2685bcc1bd55d46db09845c2e8a598773097ec20147cf34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in changelog-multiverse-heliophysics-regulus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d26b7c4b39b23830057045d4ac69e6039758294f45b8f6197cf5f5af279e466 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in webpack-borealis-paleoceanography-odin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cbf8f7f7c20f0f2447cff594b125306eb9f2baec1daf20a389df5654223f40d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in telesto-neptune-tethys-shelljs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b60aa630590205ca8b7b9fd1a3f55a9cd33aaba2af30218049c11201e9a43c96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ganymede-sass-loader-dagda-husky (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fe9c9d0f9257e10d0d36f8a449e90ac738feb5c317dd23046cda74505c2a743 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186291 Malicious code in container-encrypt-kappa-virtualize-old (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f797b4a9f89f991872b9512b2adfc5ff57180b4e3a26fdb86bc508e15a96a1b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mini-css-extract-plugin-radiant-axios-sirius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f255926db1be155e2c1e286c83a201f3224cf7e9ccdb856f55b6a9deaade8b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in string-crust-exoplanet-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 607e2f5aeee990d1d2e3b76b3468cde2ee84ab17224b598c35f9804f65bcc526 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in entanglement-greatfilter-void-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f5c938a40aa714464f758cf9b7ffb6b9ac75e1e0bfdfb7fa0e1b292f499d3135 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hyperion-oberon-mongodb-quantum-computing (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6bfcc2fa60e4107cbd635039755ee95dd1734cf3a96d729c4d69c5797c88a4b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eclipse-levels-lynx-nanotechnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e16a598e256c596a0ce072b0c9bc1946d67911157b58b0ad8cad82e607360b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...