Malicious code in vulcan-graphql-sadr-leda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b28fd7869c1e84447ed5bb31e1a38bd35e970545d9af54c68a3ce47e58301765 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in apparent_armadillo_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 186eb4cb57da5e9bb2dbf713c49db883624fa23c04b3dc536eaa0a371ed328b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gradual_fly_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09731b4795cfb890b18180946754e2fc9c3c712443a289e3f2180220eb26150f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-84318 Malicious code in damaged_bobcat_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ccb46c94f410b1e8203755bd2058aca91c86af61c8e51d236c689f3e386849d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in curly_scorpion_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a664b1e07adbbbb2536f368bcc38cdd88e09f89f519e2583ec5c4632e966502 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...