Malicious code in terser-webpack-plugin-nucleosynthesis-hadron-taurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9369464ddb44df2eb49a987731c6b712db57570302fd3f325530a2afb053126 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in neptune-ini-apex-ophiuchus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37b63ab4631ab55ea26f71c7b50ce32dc848123780edb2d0f6b35e671c557b81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187813 Malicious code in lint-staged-inquirer-transport-hawkingradiation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfbb20d4bd0ecb369e109ab32d36b1f7d0610fb45df7d23e8f9bbf0db5f3c22e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in typeorm-protractor-cryovolcano-concurrently (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02a13bbeca9fad4181dd9e0e667817df4fb2bf290994f3f37757c86d5562cb2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188117 Malicious code in mongoose-wolf-deimos-forever (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 278e4a12ef49eb23953dc1bea73ef37ad5b5174a325aaebbabb2faba7c8c204b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190163 Malicious code in virtualize-reject-secure-finally-function (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c2d4b6d8c1cf607c34947c1092356b4306699e741e0587ad20bf50524ad08a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185463 Malicious code in antares-bunyan-apollo-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2c64bc39e1aa26b38456721f22e94693806377129dbac49a767a3dbeb61f372 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in decrypt-xml-compress-moon-file (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd29dfb05cee6c5ddaf5d6fc7511c903cc2572f128025c139bb45606c8a4d1af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in prompts-commitlint-canopus-karma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8b9b4e599ca550db6dbc682b5345b31e201ebcbf9b6ee09e1ad9b9caff0eb31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in weywot-resolvers-vuepress-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bdb11770ab86d295bfb45a4a377949b744a249875509122d45dee4c8f543e66 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in meissa-steganography-helmet-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 063f1e0ad2c70958a4aef76f30c704044b1b584c2eeb5dccc001e746c7509ade This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in virgo-joviology-proxima-install (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65fb535baf3318b23fa0b62b4cd4c5683c8431b361755d1cb4e8290c76a46c59 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187461 Malicious code in indus-triton-polaris-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce16fae40cad6ac6618e19cfa3d4f555f05adf35508e0718734b0f1a138f2efe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186938 Malicious code in farout-enceladus-magellan-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f03292d746272f6367ea408c0c0087fee9c3da9085941219a55a63bf3705e7e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189925 Malicious code in throw-bad-orchestrate-analyze-cat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7886aafdc1134f17a171cbf56c87c0a322e52665e05ce9712e28c73e51ac95a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189412 Malicious code in sedna-jest-init-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 25e29146ae9ff359dd96b1cd1b095636278686695d62974a2d5867e6a74edcff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in resolvers-chakra-ui-bootstrap-ursa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d79ea6a0ddcc32a8eefe901fe9fac78119e8f7ef1b653b5f8b55b441099df42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in supernova-dysonswarm-arcturus-solis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb56d71359f955d83f68c2050ffd9f7e52a84eaca18c226afd9b2e5225844e19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185949 Malicious code in bunyan-redis-capella-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56b9ec0c5fa82205dee259b73ad694a1c72663bb5a0d4d0e23c5bbbfbe461f40 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185424 Malicious code in aldebaran-thuban-gacrux-apex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89edf3df3532bb49c2c76748f619d106892eaa539e1416145739aa8a307a1f0e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...