EUVD-2025-124499

Malicious code in nextjs-postcss-galaxy-triton npm...

EUVD-2025-122167

Malicious code in sedna-carpo-command-postcss-loader npm...

EUVD-2025-115223

Malicious code in comet-parcel-perseus-postcss-loader npm...

EUVD-2025-114276

Malicious code in dynamo-optimize-css-assets-webpack-plugin-postcss-cluster npm...

EUVD-2025-122876

Malicious code in rate-limiter-postcss-vega-chromedriver npm...

Malicious code in mutation-chromedriver-postcss-loader-proxima (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67015401d420f0d76976cc33d6c4b78a0808d48575356ada771e44ec5c50d631 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123535

Malicious code in postcss-deimos-express-fusion npm...

EUVD-2025-122312

Malicious code in sagitta-postcss-uninstall-delphinus npm...

EUVD-2025-123524

Malicious code in postcss-loader-halley-middleware-xanadu npm...

EUVD-2025-122896

Malicious code in radiant-tool-postcss-loader-algol npm...

EUVD-2025-120207

Malicious code in xerxes-weywot-eris-postcss npm...

EUVD-2025-113030

Malicious code in grus-avior-sirius-postcss npm...

Malicious code in slidev-postcss-loader-non-blocking-dagda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 908ac57851e5eb2a493ddb3438f9e04e69b5b2d95cb824b69490b1cbee3ddba3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123529

Malicious code in postcss-loader-dotenv-safe-yakutsk-dione npm...

EUVD-2025-116098

Malicious code in betelgeuse-scorpius-postcss-loader-telesto npm...

EUVD-2025-123525

Malicious code in postcss-loader-galaxy-kaus-cygnus npm...

MAL-2025-146402 Malicious code in postcss-loader-nightwatch-hugo-tethys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50e4beacd28628662157313c1228b2e5d2f837b744c07aa98fb2107f178cad4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146104 Malicious code in perseus-postcss-loader-janus-gacrux (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9717f2f2ac452204d81ca2f4247e7b08e40a0486176508635e3a9a8711d883ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144285 Malicious code in leda-pino-pretty-command-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ce119a64f69bf04c213d4d6ae4eb4186c8268e2283415e92a5a68319226bb4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146406 Malicious code in postcss-loader-quito-iota-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9ff2bf6dc026adfb7fcf087d65584c298b75dd1842c5baff878381350cd0ad5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...