Malicious code in sedna-geodynamo-holography-paleontology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 161eeb2af5e07a48c3afcc0c4cb1ffb743e291005e4a004fc3d14e91464f24b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in holography-antares-enif-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc8649af4f582c4122138a6cc2191c5208ae130c40e0a81317dfb3433f22d4eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187368 Malicious code in holography-hercules-janus-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc0747bbcd6e1cb7fbbcd0dc7b214cd578ce9437437d5ff92c3122cd217d7f36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-177631

Malicious code in neutronstar-holography-greatfilter-miranda npm...

EUVD-2025-176779

Malicious code in readable-holography-buffer-odin npm...

EUVD-2025-178517

Malicious code in holography-commitizen-kardashevscale-morgan npm...

Malicious code in radioastronomy-holography-express-avior (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe0408e04bfa5629eb1d1c2f786b2fb46c5daa7568bdbfb9e16adf71967c0dd0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176464

Malicious code in sedna-geodynamo-holography-paleontology npm...

EUVD-2025-176811

Malicious code in radioastronomy-holography-express-avior npm...

EUVD-2025-177653

Malicious code in neptune-sync-holography-xenobiology npm...

MAL-2025-188398 Malicious code in odin-holography-wavefunction-webpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c09fd2453e24f48107fbf3d8ce34cb5c157911aa14bea9e03e3c6f7a6097ce7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-178580

Malicious code in heka-buffer-holography-subduction npm...

Malicious code in grus-crust-greatfilter-holography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a838db28e4304c090d7abff45df6991037bf045cae83f8cec95623bbcf772a9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-177484

Malicious code in odin-holography-wavefunction-webpack npm...

EUVD-2025-178515

Malicious code in holography-development-nightmare-uranology npm...

EUVD-2025-179716

Malicious code in cli-holography-bunyan-telesto npm...

EUVD-2025-178641

Malicious code in grus-crust-greatfilter-holography npm...

Malicious code in holography-hercules-janus-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc0747bbcd6e1cb7fbbcd0dc7b214cd578ce9437437d5ff92c3122cd217d7f36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188672 Malicious code in phoebe-holography-deimos-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f786ef6f1326d79ed74a82e68991e790daceb5da183862a7f8406b1c60880be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190185 Malicious code in vortex-auth0-string-holography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4b12f620e4fb06f261bdd80d409124bb22468e54001e0012b822d68da3e2741 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...