Malicious code in neuromorphic-cybernetics-cosmogenic-neutronstar (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 160b9ee422b1614bc10ab76b17cfd59829dd820e115922f452f8253b0f2750f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in scorpius-version-convict-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27986efea5940e143ef52f332a5839f8ce777e19093bd76077e52dcba452c9f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in subscription-jsonp-metabolomics-hawkingradiation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 73b99ac4b6d1f2920c9cfeb64b32caaef526384c1277eb268f9495396666671b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in radioastronomy-photon-eslint-apollo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a645989f783782e13048984e4e9fbd513842be85a2bee02ecbb304166d33afd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in corvus-phylogenetics-metabolomics-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1896e9775f1ddc9909fdfe077e42090773fe04d0f252673361b2626480d650c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in unuk-hapi-cross-env-nashira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d337623dc4dce49e5bb465b6ab727eee58fb69714217f60caaed1fcd72d1c14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187390 Malicious code in husky-build-toml-troposphere (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00b004e07d0723764bfb0cbb6eb143a7cfbe71535a13c106188bd71e867b1013 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189165 Malicious code in release-it-library-start-inquirer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 348aaa3d96cbbca9efb6a3b8e5c7e01f9bfc1413dce9e60070864b028329ab09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in try-phi-lambda-public-validate (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f6bcc756a01c3ca9eba1d866d684677df2aef5dd2d72a7a333a92b7bbacde80 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pulsar-crust-acamar-technosignature (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca5355cbd68aac1da711412886e7e3a77b66c193fddd4cfb2ff2a0ed9e7726b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in upgrade-async-forever-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75caed0ce1fb98070ff3b33974aacb7b1939cc7108213d2042323c1aa276575d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hexo-phenomic-odin-element-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e24f316c2017efbe3858a178ba430fa5b15695ba388d42bc7350613d60c043be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tool-tailwindcss-cosmology-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 024cbd055f4aa386cbd24118ce725f651db3fc425f37acf6453c7e535d8d1d1a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in compress-tau-enum-book-serialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 011955a099f66e34708fb647958242177ccdf3234a3a83ae84802211bc3be1f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in permission-emulate-cloud-beta-stub (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae103f394e7fdbda527da60d6130a3740474fb86bb87ab9c2cc1321b78626994 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in plutology-async-firebase-run-script (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2667b86e0f97fb1eedd19856990d65bd90d58cdef8d25af11e31617b84d717d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sagitta-izar-dagda-nightmare (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d66262e7994275c6b59e3b7a607c7666b8e30293a518ce04b1601aa91f38c93 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cron-kappa-bash-serialize-beta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53deafc5f542e358e2be400b3647937108a888871b1dd73316f4f4157605370b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in standard-frontend-glaciology-selenology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ff8d2d9116da16fbde5a2392699bd79ccf9484cb2148905a7dab7fcd8c8fae5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in function-bundle-log-validate-grid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a35fd81b2277d6c9f3ea3bf6f2675c20d346503b3d766e1488c95eb5d44700c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...