745 matches found
EUVD-2025-123511
Malicious code in postcss-loader-slidev-gulp-bellatrix npm...
MAL-2025-146417 Malicious code in postcss-neptune-ursa-nextjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cb77aec177aa08941fff2e38a90f659895d77f4a2d68453f8a9c1bf244d1376 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148012 Malicious code in slidev-postcss-loader-non-blocking-dagda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 908ac57851e5eb2a493ddb3438f9e04e69b5b2d95cb824b69490b1cbee3ddba3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145136 Malicious code in mongodb-postcss-loader-async-scorpius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9142e08ed13db0529b9ced6d0dc369bd6d77a6c48aa9ab1c6409a1b485c8b2d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144963 Malicious code in middleware-postcss-loader-vulcan-configstore (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99d428e4a36316610a46ca531a7cf361eacd9cf94095b45764a4a3d1e7864ef4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146410 Malicious code in postcss-loader-slidev-gulp-bellatrix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5862d33be04bc9356770af83130173cb0e8ea065555eca3cac16d8de2bd2a5f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146412 Malicious code in postcss-loader-telesto-vulcan-phenomic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2d032771765afdffab124f10a56de31b135824b7fdd9e795e2ba150faca6d14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146422 Malicious code in postcss-slides-browserify-less-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ed32228acec370c873c86c008e03a58d16a799b4df31c1b515a25cd13ab56bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146409 Malicious code in postcss-loader-semantic-release-slides-buffer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 717f95fa76f8eeced6870b8c5dfccbaf84f939725805d64b82d2113facf15754 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146413 Malicious code in postcss-loader-webdriver-manager-chalk-json (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9a4091768432e806b132a6147bd0d7b9388cffec761aaf5c90f18b1fb1576a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146400 Malicious code in postcss-loader-mini-css-extract-plugin-development-heka (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06bf6d7f07b3ed2d9691b5bcc6b10f80b6a8691b343b4cc3ba50758e2edf9632 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146386 Malicious code in postcss-deimos-express-fusion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01a01bdc174dfd05d600759d6d9aab8707546cd8172951c7e942208348b2d8dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-113204
Malicious code in gemini-nova-postcss-loader-grus npm...
EUVD-2025-123520
Malicious code in postcss-loader-mutation-command-procyon npm...
EUVD-2025-115302
Malicious code in cli-npm-postcss-loader-juno npm...
EUVD-2025-123518
Malicious code in postcss-loader-npm-child-process-gravity npm...
MAL-2025-144598 Malicious code in lynx-parcel-telesto-postcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11a81e296bc597462543d7c7356b81d22d0bd5ba481700455ce5e90096884655 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139577 Malicious code in arcturus-toml-carpo-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8147de9a6ba9892bbef8fb92f6494108d9eeabd8b916bf2676a4467a322ec14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146382 Malicious code in postcss-chalk-cassini-hugo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cd5f2d5d3d3bf33c23a3ca41571ccc6d77668f774fa2b3c8985024b5ed6051f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-114389
Malicious code in dotenv-parse-variables-eris-xenon-postcss npm...