Malicious code in xenon-apex-ultra-zenith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d255eba690342099284d8bf8a8103b1b72404c253a39810bbe3abd1882f8030 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in decrypt-xml-compress-moon-file (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd29dfb05cee6c5ddaf5d6fc7511c903cc2572f128025c139bb45606c8a4d1af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in good-bundle-scale-grid-load (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecb5f25a8c7a4ab999302de7e1d4276c98a195b7ab0c46c098583f229a388426 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in jovian-sass-loader-native-cassini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 225deea9531693f6cbd7d6edd3656452b2959b26fd0b8a748ec2e08d0dbcbb98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in oscillation-oscillation-accretion-comet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5aabcc23741bcf27357094729678d0020795b582d6ff8e15a2a87d1131c48525 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sedna-request-dysonswarm-enif (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe1b03cec1c5daf993196232116f24865c643b035dc6a9255cf8d2656074c012 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cosmos-coronalmassejection-remark-arcturus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 208a74d2761cf9eb60cec0d3b5d1fc4781bf4aa0d64bb47e029d69cc94828006 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rain-interface-java-bundle-wind (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 861caba75a2a254135ada995aca02170f3baf8a663c283e579f73bb112d4f59d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in protractor-eclipse-ini-subscription (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e4c4cd1c8af3f847641151dd89b0a4f294c53b6b5e6a591c461e8239a74b873 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in transform-blitz-element-ui-helios (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f0718911e1bd9246bcc62a5c6328b03e3846539f5bb7a874229116d8f787ff8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-177668

Malicious code in neptune-cryovolcano-dysonswarm-scripts npm...

Malicious code in filament-xanthus-bellatrix-phoenix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c17c5dd3847eb026a39f61d0b1eea2e94bb28158bfca7e95c14efaf49ea10ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in slides-convict-husky-kaus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b69738a724e0092e0205d6285478e0784c458bdc90564307ce801699beb7d7fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in iota-stub-wind-quick-promise (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 926d033f3f79f78ed2711cf99d51fef9eae637b5fe355e222fd485b6b583a03d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in prosthetics-commitlint-astrobiology-io (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbfb4f7c503130fe491771b7258e74f8a9cad2cc0d49ebd7fa62fc8813bece12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in resonance-phylogenetics-config-aquarius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf9389d6a77d1a6bf6c0b2dc7e5ba06a42045e1de06c4315c2ab90d427de0645 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in slides-photon-nightwatch-stratigraphy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 444e670a73192fcb4bb106568c8db84e3d394ec118dc7e174a44da9d20b5a52b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in exosphere-scripts-halley-upgrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7aea4bb42453a2cc632f90552563951342c8c491a64f789d794a788c96d1b107 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in testcafe-postcss-europa-atlas (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0c0b587b82115b84377ead8bc9a56089abcc5377b44746e483ed6e69e89ec63 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in abiogenesis-cluster-astrophysics-epigenetics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9bd2cb71328f444629e5bce6d0a3a04d39aa960d282b7c896279f7cd4cf3c250 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...