Malicious code in middleware-mini-css-extract-plugin-ignite-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f3e82122591102f60da59a1022fd9f2b71682cbab9b037920a755ef505cc80d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in xanthus-dotenv-safe-markdownlint-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65059d3c138e66e932e624190cf09688f2f69178722bd6940b7cd7ebdb558347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in library-archaeoastronomy-winston-spica (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbe3dcb39beccc420438542d11282f21171bd86c34f18ac5d213fcc6caa0eed6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in readable-enif-module-saturnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5279ac86f66ab8845298dfe697a8693a0861f49af12492693f8f39123fcde609 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in prettier-cordelia-npm-toml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8693798f07079a63c9a58f328f01d4eb334b548f33eb6a629cc2fbd4146f372 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189596 Malicious code in spawn-miranda-publish-galaxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7abecc7f7e41575adec56452069c9e78b09579af5a2bfa19b17d85134384036d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186859 Malicious code in ethology-ophiuchus-slidev-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c2f40a4b4e432786056beb60a86f5a1aae0069cd01285d04f9d578da7fe9d95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eventhoriz-futurology-event-chariklo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c96777a755a8d3822d329b2a9e85b002427023d67467caa7f45bb2d7653b76d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in thuban-charon-uninstall-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 743ae6cbbbc27159bd1e3230d2f79754bd82c0b625304d5cc5285d043d6b7002 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in plutology-ariel-subscription-meissa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7586875995a9248c1bb0d69061389e43a86bfb28b5f8a11e6aef21281d3ed47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190164 Malicious code in virtualreality-abiogenesis-passport-chalk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 216de1758c390287dbbb13dfbd2b313f02658117cb686365a5d236b6ffd10c7f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187563 Malicious code in jabbah-titan-eslint-config-equinox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f920754dfd3526e4037f94d1ee2ae2205d9eae6df972819a37ff0a02087f6c79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190014 Malicious code in typeorm-csv-troposphere-socketio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e73547aa88679589280af7f97832cc643441c415a7b0c69aa00448db76023b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in standard-parallax-chalk-hologram (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e2934ac6320277e5063462e270834c731ea4b0adca554a815fc2fb2716df7b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189958 Malicious code in tool-tailwindcss-cosmology-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 024cbd055f4aa386cbd24118ce725f651db3fc425f37acf6453c7e535d8d1d1a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gridsome-interstellarmedium-private-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc35853619fa48c454f34cb715f9e8d0ccd26fc433fd0366423d526d7580bd78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in react-bootstrap-phoenix-janus-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9bfaac5b13ee3615038f009dd8cc5708e1733b833f6322bcab514c56246a82d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in materialize-magnetar-paleontology-cosmochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecf9462c6606c2905716e1a2464a867641a12542ae45f8c63e22e1cdfbe250ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188865 Malicious code in promise-user-static-small-stack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c64df40d8c88404b0fcdbcfd8a46b14e2a3e655bab47d6be8f43f550bdf10edc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eris-perseus-subscription-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b261a9fb861a3208da1f028fe4c2ebee2a90df3ce636dcd100ab6c0f0ceb8c2c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...