Malicious code in coronalmassejection-terser-zooarchaeology-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f17a3906bd4a11e984c0df47d8cc68a8a7f61cd950e0a6de37029a1ce951b7f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gravity-wezen-sequelize-fermion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e705d37886617b79af3e4139947f47eb9b4a67b7b11b7b5fe989694e66d8e24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in publish-sadr-event-readable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 978e41ca2421c245f688460c9427d78104c89c3f1cb3c995b6129df54b03fe19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in orbit-zenith-magellan-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ea800d34eda6ec15db396e27410644077e675f01e4972c0dff9cda67740ff49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188982 Malicious code in puppeteer-module-sails-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 258574792c4358cae9fb04cfb28fc03f4155696154704c103851e20e23a91bbe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185838 Malicious code in biotechnology-draco-webpack-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37351f9d161bded8244999f286d5a8e7b5a01f0fcdf5440fb810ebbaf8eaaf8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188813 Malicious code in prettier-stylelint-zenobia-loop-paleomagnetism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcef3a94c77587648874ca5cc0a096f2a5a9a9c7b55cd912545c46394ed299ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189659 Malicious code in start-iota-webpack-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a864f90e149e2b4496c53b9311b410904ffa98c5015ec30a16c6e3787810c0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187664 Malicious code in kardashevscale-dotenv-safe-callisto-quasarjet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00dd6daf056c12587f78cd4d25b3ea2e9fdc19b90912211f667dda8a247dbd73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187148 Malicious code in genomics-paleoclimatology-aldebaran-gacrux (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61d8b559320156005e619cb24f4a11bb7c6a51f20a8391b8536b8564c568899f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189532 Malicious code in slides-quark-thermochronology-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07dcbe1f37510df116b71e1a7ab93ef11a33c2f0a768fb496338638ae21b7256 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187722 Malicious code in lacerta-style-loader-mini-css-extract-plugin-less (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 222914e44e98bf610164e7ab4d3b3240a1bf355716c59e8661864f5d3de0ffc6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in elara-jovian-dorado-biogeochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffc0a55b1c53c1fd2c1886e27d908c9c4f143b5f167960e36e22de36e35aeb7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pulsar-crust-acamar-technosignature (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca5355cbd68aac1da711412886e7e3a77b66c193fddd4cfb2ff2a0ed9e7726b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ignite-hermes-ophiuchus-semantic-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a46d3fb402931eff7024c48a03204cb67a6ee59f55d17ca893a2a5d4973ec28a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in try-phi-lambda-public-validate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f6bcc756a01c3ca9eba1d866d684677df2aef5dd2d72a7a333a92b7bbacde80 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in deploy-awk-user-psi-mu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85974b235976ec2159baa382d8cac5043c2dfa29505a618c566d90e5a64e62a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in helios-centaurus-juno-lint-staged (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 929260b67680ed0507a691726e1f4f84a5fb3205b6e1217e1356966bbbfa20e4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in publish-jest-sadr-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e89aac5d0b4009e332adde5f4ab68e22d2649dca304694ad146bbe8bd1ab922 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in forever-heka-polaris-elektra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 549cbeccda483381d702c303bbb17493a0b42b4983911a75c13b972b2178d872 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...