Malicious code in concurrently-grus-vuepress-zenith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7074c66c67ba8954226ffe4caea4be815b7cbdb15439e2f2e1a589d8eab0e173 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miranda-genomics-uninstall-virgo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfeacda2b376daee22f78d9a59bb58433ef352a72d825d0910791a5051064406 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mock-sandbox-private-stub-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b278ec81aa032c216582a6a7be827213f777087cf4b2e0c8d2537c5889bbe8f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in publish-adonis-asteroid-acamar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c94420588181dc182ea98ed43b9f6247af8b27913f519ddec433383a013e447 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186193 Malicious code in code-code-old-reject-cat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c899170e707048f7a4cca5c47d5b69c5e973289a723f30a8f0ca015ae5d82005 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190126 Malicious code in user-refactor-cluster-transpile-eta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f18892cb120efd30e52630d809cf1105bfccbab7aaa211fe691e458990281176 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186831 Malicious code in eslint-commitizen-firebase-upgrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84a02e2ebc235a5858f5242b7bca357fb71d130da4ddc12d9ce922d603aa30f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188811 Malicious code in prettier-stylelint-got-cosmos-ariel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 191ad1021c21de2e4d2aff52918a87b8c01692e87e5d7d02fa1dd71a2f77ed88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in webdriver-manager-venus-coronalmassejection-spica (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97a9f79b52091ebff932b871168c288a94bf9d5c3465addfc54adbcb69c3ca52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185455 Malicious code in andromeda-grus-leda-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ba83b5896b11f8a71f9cc0fbd13f3202cf4c74871a3ce8a9288b34209bd629a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in enceladus-got-ultra-centauri (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 32239f7dbc5399708cd1356919a8314d11782fff280d08afb68b2a936bd12671 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187281 Malicious code in hash-authorize-sanitize-signal-cloud (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6036f529790af1d972ea5481f35974ed1ddef51980d2dfd257f1206670838669 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189262 Malicious code in rocket-package-sass-loader-avior (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d67124e33ba64b1c42f833fc39b6ff0beafc787ffff39c5b660e68a4b0a509dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190381 Malicious code in xenos-upgrade-orbit-kinetic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 22aacfc70714c921495c0072e931272fb84602da273d378a399fb895e36b109d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187384 Malicious code in hugo-mini-css-extract-plugin-ophiuchus-convict (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ab15840c7162a1c78bb10f8ff332b175c7f6472daf912e63eb81d372dc63e1b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189033 Malicious code in quasar-promise-kaus-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 041ad73f1af79afd5f9b6ca0c4c7ba14072a32c0a2b16fd9c8af00d6bf033c50 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in registry-ursa-prettier-plugin-markdown-framework (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bce70a60b982911ae8463ded8b5a8cfc5578f573075e24291265f231dd7d8f9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in perseus-selenium-lepton-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9bfc1cfbb199ea1ca3bb90c697618a7d74ab51f4a88a59c1319771b74755a06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in electron-pm2-toml-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f39fb8a9d75395b1785a187dc32fd7123d42ea214d0d3cd4f9526ff421b0a685 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rest-version-library-hadron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e3b01d06955b1393fdf87ea7bfd085c32e43a39e890b503008aefae093db6b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...