Malicious code in spawn-venus-hydra-cordelia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a66e971fd14bdefb13ffa29893acb4ce63a7232109a3f4246fc26be70ddc6ca6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189903 Malicious code in tethys-acamar-protractor-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8f234d34a0dea492db0b42ade03fb70e04249f9902f2e5f7a4ee7ef9225a278 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lyra-fomalhaut-arcturus-enceladus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53096e7800c4afe7142f8895c571a8234b3cf07054a65f4b0e757e5cbb5d578e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in commitlint-config-angular-forever-dotenv-parse-variables-google (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e8eabd8ef0a60fb9207674e7219976cda9db0950935484582aa5086ac905614 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-183496 Malicious code in lobac-uibg-abuae (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2ed074e3a84d63f7b2d12d31e92df1bd3caf81d230d3843bedc2e832ecc773d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184594 Malicious code in odasv-kiuu-bofafni (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17f0b7466dcc79b06f8df59c8efd66a112372ebbc034e0507cb5feb69dcbf40c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-180205 Malicious code in teate-thy-sonic-boed (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93826aacacc9c50809efcd41182f871aeec3383fa2d3636a2a855f308d8db87c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-177336 Malicious code in poglymer-ogih-gaghuagoaaga (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33982ff18c7e2d839043ee5d9dfcc129987de58f250a6a54ae83eb2888c8e083 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-167403 Malicious code in teagood-nalikami129 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cb5b69ffba15c14fec0ee14cefefa378ee2bbb3b24bc7fe9416ea89cd90b2d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in musnisdr-nuyt-nutr (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e09f22ad0489bed30f7832afb06ffb5ccbe7cdf0f3617d0c1fc864b19da3eea5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nudela-ofgaf-gafohagai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 100226555d0b4a91de69298c3fff2af9c9bfcf2851c9e26918435378d67156e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-158228 Malicious code in lintang-tea66 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48cfca8fc3f75b41f95b73bb86a240f4d6eeb629fb1ac2ee7157a467213c2679 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-167107 Malicious code in teagood-manaki41 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65a5bf63c139f4f89bd4cb0ecb1ae8d3b63798ec21a7436948494896d177a9a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-165181 Malicious code in riyanto-poke70 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7bb35e04718541b0b53ae83cff506371c8f8f147666740967b6b1f3166715e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-164134 Malicious code in pilka-kalimasa-nuivuba (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87d68ee98740862684ba1902a1ecd52e3b464d0f17b6188338e03c01fd0b2235 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141723 Malicious code in dotenv-parse-variables-gridsome-alphard-draco (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 628a27e67aa9b7cf1b20fc8c732eaf132e775a099842505ee4c045a2d1c99569 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145092 Malicious code in mocha-sedna-css-minimizer-webpack-plugin-perseus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8604a20f4f2d848230348bc9bf7b4018a8578f21adeacab02ee39ba2a9d08702 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142906 Malicious code in gemini-mongoose-mini-css-extract-plugin-dependencies (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62ff2d997a3921a2cfcfc49b398c173f42620dd3ec2c30e47b5b83e91b550b84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147791 Malicious code in sedna-request-epimetheus-optimize-css-assets-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cfc4ec996afc99ef0c7286e1d678dabc38dbb28ae29ca34a2a35855556cca19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142656 Malicious code in fornax-test-kronos-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 373b39091aad036983cc8935f0362078e6c6ae8a018b3d351bd14c6c67d98f8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...