Malicious code in baryon-ini-biomimicry-entanglement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd3513dd31103848bc094a4a190c5ad0a85ff4cb3dc49d6174a5d5e91512ba98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in deneb-biosignature-taphonomy-glaciology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 826d1c2ca5b616a8f35e0fd137fffc6f302955dd4f7b5785761a78ec8078fb4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in link-astrometry-gulp-transhumanism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4329a95dcfa0e1622818152248a41d94a3ba730de57357e0fa2c4f82e5e2950 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mensa-spectron-webdriver-prettier-stylelint-zenobia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c01f67010d3ce6356b532d86ad6e498d18ab64a061856b395c3e02a92872fe6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hexo-duplex-xenos-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa1151ddade4025065c48113f1079d31279af60beb4be33b8708bba930be0e96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in vuepress-centauri-transhumanism-astrobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9bdb05993db85d17c64f179ee15f5d3d4425016c0f6dd71699c1b011dd854db6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in paleoecology-tardigrade-express-rocket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab02d785c1af544c7c0c174e3a90bdc47d16a2f816fbd258d3b669ccf44e59ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in express-superflare-antares-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e7a6ba17312913867557019313b03b4665a5d4e5fa65ec12316140c967ff809 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188007 Malicious code in metalsmith-ganymede-gravitationalwave-biogeochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd371531b6504d7302f781d1d49aa918cc42e03fda931b017ec70b39844a114a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189139 Malicious code in regulus-taurus-reveal-md-exoplanet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b4d093eb8a9178b681e21780f061a46062c3fe3e20f452dcbf345f4b16a799c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sirius-scorpius-sirius-parsec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 945110d04861c7ba28d752135fc122c0ded21115150e551cf17097d9fdfb3eb5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in xo-castor-frontend-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 075c29e54a9911238abd8798bbb7fef42b22c93a5a8aa1a39d9fa0bf36cc7c7a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in dysonswarm-gulp-dendrochronology-iota (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df2900cd899be02f8b927b3a22067e8f4e1e87d3b8ee57a7ad44205167f4a2bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in stream-build-ganymede-corvus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24b83fb6af139dbb9bbd46a83057ddae76e5bac4e17b4d50dc4543a894b03951 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in enceladus-quantumfoam-markdownlint-lightyear (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9581fff270fca351536c9fc917d7d441c7165b0aafae91631d5fa9c002c18fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ablation-semantic-ui-readable-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deb999c04b781769ca44990d467de461dd690a88b83be66c974ada6a559b8a19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in repository-heka-nestjs-mesosphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 280a9a067b4d3a3569af0705929db53acb6d1cabc8a723c0f0e6fbe9a4024fb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in awk-mock-rain-enum-pi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea254d49e0c0d242e46d727e244f3f050290bdcc56d7af59a51ece0d90a9ecba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in impulse-eslint-config-zenobia-octans (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deb5c240efb3880d55b5185feb76739b337d22f572cbf7af950b4f7b7680179e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cladistics-charon-sagitta-protractor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b290803267a794b52c10bf128a22515a1e42d7fd608db0434de366816debf0aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...