Malicious code in geodynamo-hydrogeology-ultra-norma (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a25646f5279d706c1d9dd687cb55cb85561e38fccda1c0629ad76b46916f95c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in readable-ophiuchus-markdownlint-colors (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84f23c5a0ba600a532021dcbd3268280484ff7155d1db4a995258e9d23bca9b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in heka-markdownlint-rollup-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3918091bf1dccaa7a82585cf98bba21f487de7dad3e092c4d5f4c7b1b3c7e9ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nconf-superagent-public-writable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e97e6a99ef4d4ea1eec31bae5a51dfc4a5fd76dc8846b55e83fef3e1f6719356 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in graphql-npm-soap-fermiparadox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56716e434cd1c5a44faa2761e4607685f3dc1bfd3de906c84be90f3ba243a05b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in terser-webpack-plugin-nestjs-umbriel-cluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce5383d1d73e04c37c0a2d6b250a999810d40f5479e51250c1e31ccd8bde1485 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in borealis-hermes-bellatrix-geochronology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aabad0ccc360e1c279a67510ebabf3b3e012a1b62e2c156ad51176eddd139646 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in node-config-hexo-version-indus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e9b65b9b8c11b124be12acd58301b389aedba3ac28ad6ab66fcf6f4ac2a0a2c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in stratosphere-spectron-webdriver-deimos-dynamo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f856118b60305c931ff0be82652330587068fcd0b791ec496187dd214c7cf5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tool-wavefunction-ultra-gridsome (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6440db217bbb9f167b1f6b7b229fe260c8138b56561aaeb8a50a4cfe2d6b38b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in geomorphology-materialize-perturbation-accretion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f950d80fddbff7c9f345af602935a4448041c71c6e3aa0a96f263a4b8a2207f1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in gridsome-slides-pipe-socketio (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d3041ecadbfa1b9ee20c448a9f21b65c9463e9e394b9f82d5a14402dab7ac41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in async-registry-build-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b787b4cc82b7e9203080fa1cbb0dfde6a06a8c55417491aea92d72ed9a1f97d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in blitz-nuxtjs-cosmicray-paleoceanography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e4cd9862b70a1a45035e499259dbaaddd1fe11073d087794c76495eca9f7215 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in taurus-request-hyperion-subduction (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 805221cf5a62588c1c2a9e61e0875d0fc1e09945259c7a29162ba921752675b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185450 Malicious code in analyze-catch-load-nu-omicron (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ca47135bf85c2da7bce49e90cf34cd26d4a117d13a0348e3b07e6971308d220 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189595 Malicious code in spawn-exec-zenobia-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08d195fec77b588ee50726619249d1d77aacd06b4a03966370f3dee0c6edc02d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188738 Malicious code in planetology-sociobiology-spawn-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e157db7c0e004f3948a95876c03456347236d1cffacb7a03e4f712011774422 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188780 Malicious code in postcss-loader-hapi-publish-event (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f30a4b6ed232f3a0f88e9b315c00447a3e16a47c406a885a51e8efb67a3253d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188474 Malicious code in orchestrate-process-cache-data-async (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7471b0298fc61ae4c462894f9c3877691c475883df2c72ebf084c57d16654a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...