MAL-2025-139650 Malicious code in atlas-neptune-postcss-private (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3642a23ed879e58d8e6a28ce1fe2b4842279d353ee9f22be6c766e7a10de4b67 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146393 Malicious code in postcss-loader-elara-izar-pino-pretty (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c317d0382b6f96e1ca6051d7e83051beff238300fd09d2f8b337646c8765dbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140359 Malicious code in canopus-hermes-postcss-loader-xanthus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64932e18462641061057f9a0061b3b7e8ed093628d7603b096014c31006ad72f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144649 Malicious code in magellan-middleware-protractor-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 930bcf903d4874e22b6b79a00b1cc2c3a1fbb30b21d8d457777e38c1fb17f539 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148823 Malicious code in triton-phoebe-lint-staged-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da62219aeb9b6a9e0c008d8ad616786c15270b713723595780d92d8f0cbd2ecd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145405 Malicious code in nestjs-terser-postcss-loader-await (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cea7dc9bb5fec3e638d15d76e199ee6a1c671cd51e20914ae74fbfcf10853450 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144963 Malicious code in middleware-postcss-loader-vulcan-configstore (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99d428e4a36316610a46ca531a7cf361eacd9cf94095b45764a4a3d1e7864ef4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147026 Malicious code in radiant-tool-postcss-loader-algol (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc4499499c8548c0ac5d008278a2990487d0bf10c924b79a538991ba90a0eee5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146425 Malicious code in postcss-xanadu-test-mira (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 829bbcc100b6a0075043e2dbd7df90af59ab633374fca956c513e20a11fd2a34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146407 Malicious code in postcss-loader-sagitta-dynamo-altair (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c1bd822a752ca9487e572499a5598de7969ee9e78acd72d6c1fdc286859d9f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146400 Malicious code in postcss-loader-mini-css-extract-plugin-development-heka (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06bf6d7f07b3ed2d9691b5bcc6b10f80b6a8691b343b4cc3ba50758e2edf9632 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145310 Malicious code in nconf-deimos-postcss-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 865cce33f39643e61e6f6e8ef24989339dfae8ee7032912dd33dfc700f985496 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-145136 Malicious code in mongodb-postcss-loader-async-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9142e08ed13db0529b9ced6d0dc369bd6d77a6c48aa9ab1c6409a1b485c8b2d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144742 Malicious code in materialize-farout-postcss-loader-umbra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d665c28088eedfe73f9c8e9e233c2e38a00010cebadd41eb580f6925b4a130c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146105 Malicious code in perseus-postcss-loader-thuban-cosmiconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01f8b923d176dbf13f318330091afc5a22441ff682eae8e7d2c7fc2859adbf1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147756 Malicious code in sedna-carpo-command-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38a24b4b00f49c87b40537793e078710621ed57e859a9a24b4c06e73f4a01690 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-139588 Malicious code in ariel-ganymede-octans-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1fec6e1b31aae085b602d14429f3b3df2a9d0004263e668bbc299a4e698d2144 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144750 Malicious code in materialize-postcss-triton-dagda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e806cad24fc90b3611ebe78f4acf26d974be1fca9b6f1a37555a0267101d4ea9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146406 Malicious code in postcss-loader-quito-iota-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9ff2bf6dc026adfb7fcf087d65584c298b75dd1842c5baff878381350cd0ad5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144598 Malicious code in lynx-parcel-telesto-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11a81e296bc597462543d7c7356b81d22d0bd5ba481700455ce5e90096884655 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...