745 matches found
MAL-2025-141812 Malicious code in duplex-jekyll-janus-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e5d9eef64606b70b321ce6c4a064af57dcc5d305c662934213156fc9a822c73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148173 Malicious code in spica-postcss-init-auth (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c0dd7516ab206c60ecc4fc90715916d1522813a27c6be01c8e4d65420b4f695 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142055 Malicious code in enif-postcss-nestjs-auth (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ec138f7c2f3b7576ed66df5c83a3a39db74781bf2a78466f5371bf22fedfc71 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149072 Malicious code in ursa-rocket-postcss-janus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37cae97ac55a7b319cca4e3372d42af7f11f5411dab6a8c8a51d5898dec63432 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141483 Malicious code in dagda-repository-postcss-loader-wolf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b212ae5f985d7c18d311a6ab321a2d2732144636d494c2f7fc71552707ecbcc1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-114389
Malicious code in dotenv-parse-variables-eris-xenon-postcss npm...
MAL-2025-143082 Malicious code in grus-avior-sirius-postcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea92913ca746cb08deba1e9521afb260165ec52b0ff7c0cbbe937855ba8986ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144924 Malicious code in meteor-postcss-galaxy-markdown (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5baa599df8327e1b0ad8e16250d1ace51cc18e05fdcea42dc67da326bfb9383c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146419 Malicious code in postcss-procyon-xanadu-run-script (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d88030c79380d58aef26fdf412d1babc87d4120c4d6920877f4d389f9dc50bd7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146390 Malicious code in postcss-loader-commitizen-foundation-xenos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3544c8a28f043aa9e67e4ced4509db2908ad6675975cdeb4198f6d034572831a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147359 Malicious code in rest-nightmare-postcss-loader-ophiuchus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a32ad78d5c1b5a3137b663ae91f27e0355dcea0816dbe228c0eebaa243099d81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146401 Malicious code in postcss-loader-mutation-command-procyon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb9a3c6adcf58d65fce9eab22e16677edddfe56f8801398ceceaf8095c67cb4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149102 Malicious code in venus-aldebaran-postcss-build (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fef214a4133030f8fa65da187e1e76bafcd0e723c5e4aa8b2eb3bf3d7588f2be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146418 Malicious code in postcss-postcss-package-impulse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 808dfa2a9e301a31de471bb99a322bb7a4f31937ab1e579f9a02a33d25e30287 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149270 Malicious code in warp-jwt-postcss-local (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20e9ab47f0b83fb7255c5c651a96f89e85ee9000c6a622634dd55b0b7c05f575 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139577 Malicious code in arcturus-toml-carpo-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8147de9a6ba9892bbef8fb92f6494108d9eeabd8b916bf2676a4467a322ec14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145422 Malicious code in nextjs-postcss-galaxy-triton (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5546276d3b6710db29e003e3d35096e0f4ec408654685b966043b94a6f2e55fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143522 Malicious code in ignite-pm2-postcss-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8095a9cb35cc211097688e59741a37304773dc1f5130ed8ae6a8a9f8eddfcb5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146389 Malicious code in postcss-loader-child-process-element-ui-weywot (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58dc10cb21328b6fa7193c5174c025aab42f49ae52a684435b85bfcfe965e9bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146417 Malicious code in postcss-neptune-ursa-nextjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cb77aec177aa08941fff2e38a90f659895d77f4a2d68453f8a9c1bf244d1376 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...