Malicious code in boolean-balance-delta-visualize-resolve (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4486f7f8f007d39807ec34e7aafaa6a72b864684faedcf051d0fbbb27fd69878 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in shell-class-encrypt-info-zeta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e40f5a80a4c02a821298a0f6020758be052096be3e880026d550837ed3e387d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in zephyr-leda-procyon-pegasus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fe90ea46f9c1ef07ae94408ce10711a106d0376ef8a4fa2d56004aa48135a37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eslint-config-nebula-magnetosphere-vuetify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81e6dda4e6b8dd0db13ce9bb06eded94758780774f45b2f7146e5518fcfcc8cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sedna-semantic-release-meissa-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23de4acbd096d7b2e9443bc9c267dde65252e7ab561fffd7d05d00627a2595f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dorado-norma-sequelize-hydrogeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c5310268f12744e307ddeec31c9193e9e03f4c09638606993ade4b4ceae9989 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in easy-interpret-big-proxy-scale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27e1a4cafec6bf1cf5e6e657300eb2f4ec854809b9008a485341088d0b0bc51c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cosmochemistry-lynx-ceres-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74ab9a101e57e01b17e4c0f19e62265f783a7a29c6f149b9b13a5069caff247f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vuetify-solis-ariel-helios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db11914411eff91a86bd9fc30e3118257d2d70966941af5e85e4ce806b854ffa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in final-secure-epsilon-catch-book (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17e86d24f9e0aa24c62e5e4c9ec1038d73add02f6ef91a7fcf8a98ddf0a6de0d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in transpile-pi-cron-secure-double (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f79464e911dab89a693fca3631620c93984804f8b4a48f7c6061aadb4d7620a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189163 Malicious code in release-it-indus-promise-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d26390b2e466ad38565abbe4463e6ef01196106534541f9ba58e2d1c0c397248 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gulp-cluster-hermes-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b75be2e9a1f4408daffb548607099533dca2e521294c032121214e57670fec67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in darkmatter-build-kuiperbelt-xanthus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93483a80d5db917b2f3fe12b078b1cee95149534d194f3f15649c715de1c34e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hercules-local-ceres-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76d57167e63295d71eb4e13acdee38c498bd82d462e3e2fd11611b1559029127 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in singularity-bunyan-eslint-config-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2283510842946d2aa3d0b25e8270ce1e0e52b912769d3adadb85a58493c5e67c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in visualize-validate-array-hot-analyze (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa5405559277835b28bc4c8bb6db51998aa22c4fd91d1ef31c819a28799cc347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in beta-enum-notify-view-stack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61bccf3f703fef5887b6554bcd18352453f796633476d23cc246ea564274a9c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bootstrap-cluster-fornax-link (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f68c8b328a4fdb50634ae09eb0a5a69120d6aedc072cba9562ccade41a2e33e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in paleoclimatology-eventhoriz-areology-higgs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69773d9a5c3889d618b425370e12b0c6366104d947651f8e479e7215d1ddd1f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...