Malicious code in janus-robotics-optimize-css-assets-webpack-plugin-jovian (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0793378417a72050f4ae70f826a2da21befcf17f43ea0e8d0157e0268e5eedfe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nova-quantum-protractor-commitlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42b35d5356afc081638f9e5562655901df31ef1d90eb6c13779454805d9ab8f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bad-cron-easy-daemon-compile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ae4a12fd64affe0b52098d7c9e13114ad934f4465518a2aebb5e01ba6002b6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186945 Malicious code in fast-java-stub-void-bash (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbf6d41c7ef745a2b7ef1562477f9a960072b1225abf823fd2d741c10222a6ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187872 Malicious code in luminescence-achernar-promise-nuxtjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ac7ebeb050ed05debacd1b7a1b90dc013f97ad7fc6990f62f46c8b5bd8af70d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in polaris-wasat-grunt-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc1affc7ad0b6150f57fb3a0fdf934165deea0ff7b907870a00feb2822ac91c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190016 Malicious code in typeorm-kuiperbelt-miranda-tachyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cec24c5ca0521ea9c00f2358b3fe70121647e459666b4b63da967a70a180982f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in singularity-restart-helmet-auriga (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bca51a8abb3ba39999a0e92f73629dc78b2744ca31118df7bc64b59ab1337ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in passport-fornax-phenomic-helmet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0027eccb2059e4e9d4978c1294182a8c666dbf5f0394eb96327a6a25b3a20c88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in private-easy-string-decrypt-meta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ae8f5ebf1c13bf1a1e8aa5ca2740eee87baa6e70ae9e6675a45d077559c16a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186405 Malicious code in cryptography-webdriver-manager-schema-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc67c3883cf7c7ca302f207d6de8605fafb02f7731fd2da71f762551c209aa18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187911 Malicious code in magnetar-palynology-uranology-blackhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcd8cb005d3b13b23a50a504bd007171a1a10b97495979bb817020abdb259373 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in odin-holography-wavefunction-webpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c09fd2453e24f48107fbf3d8ce34cb5c157911aa14bea9e03e3c6f7a6097ce7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avior-quasar-comet-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f81365f9fc5c2f91505f735b8c2f870358d8ccb4640b6b9d0b2904e54506807e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mira-wolf-prompts-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bde8f3e3019d1490a0c886c455ef3b5c6532daa56f5ab4b1b118ae0302331f78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in epigenetics-html-webpack-plugin-magellan-augmentedreality (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f6c9882b83d8b10007849602bbaec37bc9e44e101c89b209ee5a1081ef157b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in error-bash-monitor-stack-decode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a40039f7e0254dac8bfdd5141586a28742202eadc46a657b45eb9ffcd727ee2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zenith-cladistics-plutology-luna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05e4a78984349e9b233c2b9c6774a1bdaf97c0dab19c4ef6f0adec068f2c6150 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187347 Malicious code in hermes-venus-cosmos-rest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5f0ead71ec8f697105cbfd97c82d6210be7471ec2fef6679e08c1f6e42863ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190268 Malicious code in webdriver-mocha-apollo-server-shelljs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0c1cf8f48364cfee6b301adb4a524be8bb44d13eb9f240cca4f81726177c97b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...