740 matches found
MAL-2025-146389 Malicious code in postcss-loader-child-process-element-ui-weywot (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58dc10cb21328b6fa7193c5174c025aab42f49ae52a684435b85bfcfe965e9bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140359 Malicious code in canopus-hermes-postcss-loader-xanthus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64932e18462641061057f9a0061b3b7e8ed093628d7603b096014c31006ad72f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144598 Malicious code in lynx-parcel-telesto-postcss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11a81e296bc597462543d7c7356b81d22d0bd5ba481700455ce5e90096884655 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146417 Malicious code in postcss-neptune-ursa-nextjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cb77aec177aa08941fff2e38a90f659895d77f4a2d68453f8a9c1bf244d1376 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146105 Malicious code in perseus-postcss-loader-thuban-cosmiconfig (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01f8b923d176dbf13f318330091afc5a22441ff682eae8e7d2c7fc2859adbf1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149270 Malicious code in warp-jwt-postcss-local (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20e9ab47f0b83fb7255c5c651a96f89e85ee9000c6a622634dd55b0b7c05f575 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143519 Malicious code in ignite-morgan-postcss-loader-morgan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69416919d6a5f042a70f254596d0ddf47863aea254d55875387e2df7ffc3ebe3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146383 Malicious code in postcss-charon-antares-mutation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21ef6d8dafaa116a5ca64bdb2c40c47a42b8d292a31ce2ea6825553b57b0690c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144742 Malicious code in materialize-farout-postcss-loader-umbra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d665c28088eedfe73f9c8e9e233c2e38a00010cebadd41eb580f6925b4a130c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147841 Malicious code in semantic-ui-cluster-hermes-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6a38dbba7b00e647d69f73f67ae222eb75a0da894f7044cf1f158e753ac6ab6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147633 Malicious code in sagitta-zephyr-andromeda-postcss-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61a5b1bfa53ba310f253f18851fdadd7844eb8de63467a2bfbabce2ddef447a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149102 Malicious code in venus-aldebaran-postcss-build (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fef214a4133030f8fa65da187e1e76bafcd0e723c5e4aa8b2eb3bf3d7588f2be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142179 Malicious code in eris-postcss-meissa-orbit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d27bcabfaaa9e19e794765c57eb2a14c626c0f10f9a9c0753116c47fdae89bc5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145405 Malicious code in nestjs-terser-postcss-loader-await (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cea7dc9bb5fec3e638d15d76e199ee6a1c671cd51e20914ae74fbfcf10853450 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-114132
Malicious code in element-ui-postcss-less-elara npm...
EUVD-2025-123816
Malicious code in perseus-postcss-loader-thuban-cosmiconfig npm...
EUVD-2025-122226
Malicious code in schema-init-cosmiconfig-postcss-loader npm...
EUVD-2025-123514
Malicious code in postcss-loader-sagitta-dynamo-altair npm...
EUVD-2025-123654
Malicious code in pipe-query-puppeteer-postcss npm...
EUVD-2025-121430
Malicious code in telesto-pulsar-postcss-loader-indus npm...