Malicious code in double-decode-encrypt-cache-bundle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2dd120085360bd941b6b618bfba167ef9076e6663bd3af7dc247e1b7a6588f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in execute-java-short-cluster-bundle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0078f37af1918262289019391ff05bf9d93d02c69489efe7d3c4cd18bc998f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190201 Malicious code in vuetify-thermochronology-csv-cryovolcano (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 203350dac17303b45c43bb6a8b176ec28f297d373b7b00d634187149616e7c80 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187662 Malicious code in kardashevscale-apex-neptunology-astrometry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ed6681820d0d0e956aabd73d96954dce8d8314d4484f8f31fccd3f6b85bf0f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189379 Malicious code in scorpius-elara-membrane-brane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb39ffa44da48ee1378a4026bab1577b895a9547b6f4fd79847539f08e9ed685 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189963 Malicious code in transform-command-cors-parcel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec1e5fdd3ff42bdb4fc326565165f244de82f2ff60b02bda4c9ec28c93e9da73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185761 Malicious code in bash-water-resolve-unix-error (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8aa208583cc81c4598465e3b44b85048c1d4a747fe9087200fc8eabae365d5fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186921 Malicious code in export-decompress-integer-encrypt-void (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28695760d083f5e2fcbad0256e0d7bcd97eb380a6817997d836fdb188c1733e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187196 Malicious code in google-radiant-weywot-rocket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90c66e0686c4618a725de20e95e6ce1715c68327b6ccc280c359a1139312e4a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in reject-finally-data-big-long (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6243870677db1940fb6836bc6f04d08fabc64edf94c4b49f0a5ea514944118c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in outercore-cli-concurrently-troposphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b76cbf6f2fe58669afa1ad61f6a6f611e0b68ff421df8477ef30eff21fd33ec5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in stream-build-ganymede-corvus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24b83fb6af139dbb9bbd46a83057ddae76e5bac4e17b4d50dc4543a894b03951 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rehype-mesosphere-orbit-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2e28a6ef17ceb60bba6aa7f7aa38fe00aeb2d6a8cebd70653412a6507744772 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in superposition-unuk-spectroscopy-borealis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 447a420e2f7492d5062a141b6b5f5bf8ca06267753ff8c144ff4da6937865934 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in bad-old-deserialize-bundle-boolean (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9cdce2dcf4be67b168c96fb9a58af64b1b400ef7ee5345b993348f76fcefd3c7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in benchmark-view-mu-cat-virtualize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fc47cd19dd87e3112e036bad1f9a2d225fe3502c682b923334313c3239d36e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in archaeometry-eventhoriz-taphonomy-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60c3be56c95cdb3180faf1ff5f1f7ac9b1287134bb4a918d5d585bbae225d4bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in awk-mock-rain-enum-pi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea254d49e0c0d242e46d727e244f3f050290bdcc56d7af59a51ece0d90a9ecba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in fermiparadox-graviton-brane-membrane (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9262fc1c11bb2ad7e0e11f6605fc6d66a164fa4c863661fdfee73f4776ba5f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ignite-rehype-xo-cypress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4a51f0740e1612c51322e453536c8292d2bc79861076bc5c2b152821856564f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...