Malicious code in polaris-wasat-grunt-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc1affc7ad0b6150f57fb3a0fdf934165deea0ff7b907870a00feb2822ac91c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186405 Malicious code in cryptography-webdriver-manager-schema-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc67c3883cf7c7ca302f207d6de8605fafb02f7731fd2da71f762551c209aa18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189675 Malicious code in stratigraphy-castor-subduction-thermochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f95e074cf44d088a943a7366dcf7a4c1bcf3bd044d9b79a6733eab0a5ec6e5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in singularity-restart-helmet-auriga (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bca51a8abb3ba39999a0e92f73629dc78b2744ca31118df7bc64b59ab1337ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in passport-fornax-phenomic-helmet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0027eccb2059e4e9d4978c1294182a8c666dbf5f0394eb96327a6a25b3a20c88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nova-quantum-protractor-commitlint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42b35d5356afc081638f9e5562655901df31ef1d90eb6c13779454805d9ab8f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in private-easy-string-decrypt-meta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ae8f5ebf1c13bf1a1e8aa5ca2740eee87baa6e70ae9e6675a45d077559c16a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in odin-holography-wavefunction-webpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c09fd2453e24f48107fbf3d8ce34cb5c157911aa14bea9e03e3c6f7a6097ce7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in avior-quasar-comet-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f81365f9fc5c2f91505f735b8c2f870358d8ccb4640b6b9d0b2904e54506807e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mira-wolf-prompts-got (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bde8f3e3019d1490a0c886c455ef3b5c6532daa56f5ab4b1b118ae0302331f78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in epigenetics-html-webpack-plugin-magellan-augmentedreality (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f6c9882b83d8b10007849602bbaec37bc9e44e101c89b209ee5a1081ef157b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in error-bash-monitor-stack-decode (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a40039f7e0254dac8bfdd5141586a28742202eadc46a657b45eb9ffcd727ee2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bad-cron-easy-daemon-compile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ae4a12fd64affe0b52098d7c9e13114ad934f4465518a2aebb5e01ba6002b6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in janus-robotics-optimize-css-assets-webpack-plugin-jovian (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0793378417a72050f4ae70f826a2da21befcf17f43ea0e8d0157e0268e5eedfe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zenith-cladistics-plutology-luna (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 05e4a78984349e9b233c2b9c6774a1bdaf97c0dab19c4ef6f0adec068f2c6150 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187872 Malicious code in luminescence-achernar-promise-nuxtjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ac7ebeb050ed05debacd1b7a1b90dc013f97ad7fc6990f62f46c8b5bd8af70d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189408 Malicious code in sedimentology-ablation-meteor-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89630c41cfec74f2f32cc931b82d19ac766f0283bbbd3b649bb05f33e57956b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188683 Malicious code in phoenix-eleventy-io-radiant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ba874897fdcaf548e9b7fbdb00270ec5ea6feb9cb237f6dcb0946a480910f6d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187911 Malicious code in magnetar-palynology-uranology-blackhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcd8cb005d3b13b23a50a504bd007171a1a10b97495979bb817020abdb259373 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187824 Malicious code in lithosphere-markdown-pdf-winston-neptune (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc6fbfe227af2797cf89ea184596ed69bc80870c57f08a1e421accae594ddd57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...