745 matches found
MAL-2025-146382 Malicious code in postcss-chalk-cassini-hugo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cd5f2d5d3d3bf33c23a3ca41571ccc6d77668f774fa2b3c8985024b5ed6051f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142911 Malicious code in gemini-postcss-loader-quantum-resolvers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 025ab4f53ac3540ff0cd2eb7fbe2d4c11d635f63020d4195a445991a4c7d4566 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-50835
Malicious code in vite-plugin-postcss-tools npm...
Malicious Package
Overview vite-plugin-postcss-tools is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
Malicious code in vite-plugin-postcss-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4552bafe10098b91c4ce3128c885efb1c472d7f7c18b7bca5d2b174ed097e396 The package vite-plugin-postcss-tools was found to contain malicious code. Source: ghsa-malware...
EUVD-2021-1108
Malware in sbrugna...
EUVD-2023-2456
Malicious code in bioql PyPI...
EUVD-2022-0459
Malicious code in bioql PyPI...
Malicious code in postcss-calc-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a126d37fa7524804ef4c161588d71e9837418138fd67c7fbd8bc775d0f78a49f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview postcss-calc-parser is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2025-47491 Malicious code in postcss-calc-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a126d37fa7524804ef4c161588d71e9837418138fd67c7fbd8bc775d0f78a49f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in iota-terser-webpack-plugin-hermes-postcss (npm)
The package iota-terser-webpack-plugin-hermes-postcss was found to contain malicious code...
Malicious code in electron-postcss-io-dynamo (npm)
The package electron-postcss-io-dynamo was found to contain malicious code...
Malicious code in astro-postcss-loader-grunt-selenium (npm)
The package astro-postcss-loader-grunt-selenium was found to contain malicious code...
Malicious code in futurology-postcss-loader-vulcan-genomics (npm)
The package futurology-postcss-loader-vulcan-genomics was found to contain malicious code...
Malicious code in perseus-changelog-await-postcss (npm)
The package perseus-changelog-await-postcss was found to contain malicious code...
Malicious code in phylogenetics-adonis-postcss-loader-frontend (npm)
The package phylogenetics-adonis-postcss-loader-frontend was found to contain malicious code...
Malicious code in postcss-sedna-perturbation-cordelia (npm)
The package postcss-sedna-perturbation-cordelia was found to contain malicious code...
Malicious code in postgres-futurology-standard-postcss (npm)
The package postgres-futurology-standard-postcss was found to contain malicious code...
Malicious code in pyxis-postcss-nightwatch-markdownlint (npm)
The package pyxis-postcss-nightwatch-markdownlint was found to contain malicious code...