Malicious code in library-babel-meteor-kronos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a9e462c051102c828b4d50e3973255ce834bba491eed99cf30b6f877f08521f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in async-buffer-cosmiconfig-aquarius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bba737275085236d631d085f7ea2af519c6a7de3107578c0603efd3f092802a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in algol-troposphere-bellatrix-oortcloud (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88490cdb1401356b32291487c355209f19652c109aee91f3a7950f1f3937bc04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in decode-export-data-cold-error (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd9b26936a91296c9761c1dc1f244b37d89f7f0d0479753627dfb42acc4420af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in comet-oauth-airbnb-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d9fb8279f61223224e9fbdc329b569ad93d0e71610a041f12d1cb85156c9a10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in quito-process-oscillation-nanotechnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 305c655f081481854c69983ebaf4ee99e9246b7a2426a3c8e2665cdabb76619f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in signal-star-benchmark-report-small (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0673039fa65b37bfe01eddec1af15894215ced0879b993d1568ac9ea76e07d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in optimize-uglify-cluster-string-refactor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9357c297db533d262818f4d94e063b4ca7a1de545294cd6a542cd3cfd595d937 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nebula-polaris-prettier-wormhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86fe8eef18acaa2546443d8c4b2a939c3b43ae4549f2ae57d08994c602ff3ca5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in rehype-darkenergy-neptune-taphonomy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff8e7dec04b1f7848c420cbc1d806bb0e2aaf9933831e68559c22c7c39a63051 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miranda-markdown-pdf-rate-limiter-graphql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e691ac26ae0b92394354fcda674316914c8f0464d09a7681898100fb4da7308 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in iota-bash-bundle-delta-encrypt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f5937b4ff7dc4e858440a4d4659b214c5e00b7067034ed3aa76192d44a402eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in iota-levels-foundation-solis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00c2b0af1eef0fba29bf292945385ea48af585baa02b34ea53e9ae76e24eca73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in arcturus-venus-loop-cressida (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96ed06828532b121a84a1185a79336c108250ef8e69551667cb9ac3227c6fab1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in elara-hexo-postgres-astrochemistry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4068ecfde3f050b2eb3b2da7f67d43a1e892a4a4b0f4124c4635ec96c99f44ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in alphard-biohacking-areology-kardashevscale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 285400694813ff1ec33716d7a4f6d913baec9c2facd09a917816e0128598419c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in callback-uranology-fork-rigel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d89126218c63ad6d2218e842a4434823971958bc5a20ea94a407d02e72400bbb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in equinox-sass-loader-global-nestjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c598cba85983700b376ae65af350b9c9e8d3c93e46a7d3ad8ddc8430972cf8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in perseus-astrobiology-xo-postgres (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 209bc773fd8267be72905b2255aec7ca34c777cb43cffc9a378f21758053dd22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189488 Malicious code in sigma-file-signal-log-report (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e56f9455f2e267b6923668bc3fcc20ae59667c62ffee139e2dfe75c84d11eef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...