EUVD-2025-122136

Malicious code in sedna-postcss-gravity-lacerta npm...

Malicious code in postcss-loader-webdriver-manager-chalk-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9a4091768432e806b132a6147bd0d7b9388cffec761aaf5c90f18b1fb1576a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-112226

Malicious code in javascript-postcss-loader-fornax-ariel npm...

EUVD-2025-115170

Malicious code in commitizen-postcss-phoebe-jest npm...

EUVD-2025-113931

Malicious code in eris-postcss-meissa-orbit npm...

Malicious code in perseus-postcss-loader-thuban-cosmiconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01f8b923d176dbf13f318330091afc5a22441ff682eae8e7d2c7fc2859adbf1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114575

Malicious code in deneb-bootes-postcss-webdriver-mocha npm...

EUVD-2025-113459

Malicious code in fornax-selenium-postcss-loader-middleware npm...

EUVD-2025-116500

Malicious code in astro-enceladus-postcss-loader-iota npm...

EUVD-2025-123500

Malicious code in postcss-relay-chromedriver-vega npm...

EUVD-2025-123534

Malicious code in postcss-eslint-semantic-ui-metalsmith npm...

EUVD-2025-112593

Malicious code in ignite-morgan-postcss-loader-morgan npm...

EUVD-2025-124040

Malicious code in ora-electron-builder-postcss-umbra npm...

EUVD-2025-124538

Malicious code in neptune-stream-toml-postcss-loader npm...

EUVD-2025-115104

Malicious code in concurrently-firebase-remark-postcss-loader npm...

EUVD-2025-123648

Malicious code in playwright-bellatrix-postcss-loader-query npm...

Malicious code in spica-postcss-init-auth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c0dd7516ab206c60ecc4fc90715916d1522813a27c6be01c8e4d65420b4f695 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114626

Malicious code in dagda-repository-postcss-loader-wolf npm...

EUVD-2025-120857

Malicious code in ursa-rocket-postcss-janus npm...

MAL-2025-146400 Malicious code in postcss-loader-mini-css-extract-plugin-development-heka (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06bf6d7f07b3ed2d9691b5bcc6b10f80b6a8691b343b4cc3ba50758e2edf9632 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...