Malicious code in warp-ora-duplex-jekyll (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d66ff385a22dffe023d98891710432d0c59ead5f5af2c822fff70f98049abf12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190226 Malicious code in warp-ora-duplex-jekyll (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d66ff385a22dffe023d98891710432d0c59ead5f5af2c822fff70f98049abf12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-175650

Malicious code in warp-ora-duplex-jekyll npm...

EUVD-2025-114297

Malicious code in duplex-jekyll-janus-postcss-loader npm...

MAL-2025-141812 Malicious code in duplex-jekyll-janus-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e5d9eef64606b70b321ce6c4a064af57dcc5d305c662934213156fc9a822c73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...