Malicious code in cordelia-indus-cors-dotenv-safe (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b161dd83470ad8e5d5e7fae8eb08ea363c660e9e4d923d81d7c6716a5955553a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in resonance-phylogenetics-config-aquarius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf9389d6a77d1a6bf6c0b2dc7e5ba06a42045e1de06c4315c2ab90d427de0645 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in string-compile-module-benchmark-report (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a32edf99d2adb837e219033e596267b024daa93bbe2f9e9e2030e20bfffdffd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187351 Malicious code in hexo-commitlint-config-angular-nuxtjs-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa04a244c2369734edc8b55f4a7af30007d71d3275a23f60c9548644507fb197 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190307 Malicious code in weywot-webdriver-mocha-loglevel-fornax (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d10d243add4dcc6bc246152c76b5cf2eab5692efb2dce0904e83bf7400760b1a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185844 Malicious code in blackhole-prettier-plugin-markdown-achernar-redis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9bb53a6893f547e5d2b550067d21c5dd4f44f24103e7ccc2d9d6da09bbda4292 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188359 Malicious code in nova-singularitarianism-warp-redshift (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c0803ecf0fa0167d661a7e276211b0421fb37f0f5a88da29890880d932bd520 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190382 Malicious code in xenos-xanthus-celeste-react-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e905ee031b2c4ef7912618f1d64a99f35e6da479055f1504c5b29a0adaac500 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sonic-os-afisigafaafoa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b957bb54e50e683488f27387e494f4373f6997ef33f42c5a2164012b3d2ce19e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184992 Malicious code in sonic-kig-tifuacfivacfav (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68056fa37a0f0e9ad0c75ac017076cd480c7e4d3bc7a35b2b2a3ff22785acb4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-182786 Malicious code in indexa-fotadio-agov (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63ae94c599719c0839f9b96f0eb1d17e900c3c0024ed0a8010e1789629fb5a0c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-184261 Malicious code in modiov-khan-avcafivaivcd (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 023c64acefe995d2f8caa73122bf613bd9105a6a9a34af48c6d3d556042fff8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-179698 Malicious code in kisut-faig-afigufuib (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83783e8cdbb5dea4ac499b9b2d95c8e11d42077ee6f75295c281260ab70a12cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-180267 Malicious code in teate-thy-sonic-cujmov (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1287c0bc4b37df04a2a6d1b45d45dd50d4299c70a0808420be13c4303a8b5e43 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-180754 Malicious code in teate-thy-sonic-noju (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34f948e833802114842308974184c055e8322651c8afc0deba32f4768898f59d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-181053 Malicious code in teate-thy-sonic-viwhik (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd834d1452db37fbfe489b999949e427aa2d5409526dfb85954710fb7d13930f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-174648 Malicious code in hitachi-poke13 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8aa32dec6a7c940b32d3738d8f6b29e5aae10d1a7d0d3f780ef5a9b83c103a5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nuilva-avmim-rucooivsv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e52357a9e60f7a5d03fd36696ea87afca679512ea3f20c20f804c3e563184999 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-177854 Malicious code in polymer-avof-agifafadfo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d87d8788de3c3eb77cb15616e60dfeff9ccf1198483ad1da47ab12399bfe0781 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-176517 Malicious code in nokire-tanjiro30 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2cac06d8612ca64fbec5f7cc01f0264b1b132694fcb6c894a5b2628e9475789f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...