744 matches found
Malicious code in postcss-gammarayburst-whitedwarf-archaeoastronomy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b56c9b24eb32595375691f99f8c8ddc7daae29986e1c42dd18f09dcebcd5a33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nestjs-postcss-loader-slides-spinner (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 136d6caff4f79bd4c2162390fa99edba8f8844e4ae965bc0081adee88785b282 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177089
Malicious code in postcss-proxima-eris-restart npm...
Malicious code in miranda-postcss-blitz-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea79ab04fc3a6ac4cbf5514fff31c3ed5fba441933ff5d9a861ea695d6fed4eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175820
Malicious code in uninstall-semantic-ui-await-postcss npm...
EUVD-2025-180283
Malicious code in astrometry-postcss-loader-mineralogy-uninstall npm...
EUVD-2025-175577
Malicious code in weywot-astrobiology-biomimicry-postcss npm...
Malicious code in development-postcss-loader-webpack-cosmicweb (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdc7d279a0f29b5bca794be3e6921a4e2c28a76db57e85d79fa4f0cca9313cb2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188774 Malicious code in postcss-babel-centauri-orbit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 304c683267f7b701dbc99741dfd9571f4f23ae6cc76d8c453977e8cf968040fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188779 Malicious code in postcss-loader-ganymede-metalsmith-farout (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16d3d14c13f394da725b8d17c124c9aa3305c6a8dff021d59ab3c8fcc8fb610c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189866 Malicious code in terser-postcss-loader-bunyan-celeste (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8535f78567524d8b9c6926e20120a445a55b1ab1f7a69b7db5f380940c2fd10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in postcss-loader-prosthetics-loopback-javascript (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51f9f63b6e2e1816f62d699a65d1f5b8c88dc6d76c09ded78c5dca4dcc42d958 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177090
Malicious code in postcss-mongodb-astrometry-eslint-config npm...
EUVD-2025-178514
Malicious code in holography-hercules-janus-postcss npm...
EUVD-2025-177843
Malicious code in middleware-exec-callisto-postcss-loader npm...
Malicious code in postcss-loader-oscillation-supervisor-stratigraphy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24c4ee8a47b6f72647c164486538c1d1765edb3e08b84f85ff8f0e12991b0634 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177097
Malicious code in postcss-loader-bootes-dotenv-parse-variables-csv npm...
EUVD-2025-176921
Malicious code in publish-postcss-loader-achernar-hermes npm...
Malicious code in dorado-hexo-sqlite-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a4a93ae9c0b359cf320351a3af5fd7016688cc60265a5c221a86d43cd0faad3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in holography-hercules-janus-postcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc0747bbcd6e1cb7fbbcd0dc7b214cd578ce9437437d5ff92c3122cd217d7f36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...