EUVD-2025-111468

Malicious code in magellan-meissa-mini-css-extract-plugin-dorado npm...

EUVD-2025-111143

Malicious code in mini-css-extract-plugin-commitlint-config-angular-local-jwt npm...

EUVD-2025-111142

Malicious code in mini-css-extract-plugin-cygnus-centauri-buffer npm...

EUVD-2025-111137

Malicious code in mini-css-extract-plugin-library-proxima-ultra npm...

EUVD-2025-111144

Malicious code in mini-css-extract-plugin-cli-quasar-cache npm...

EUVD-2025-111125

Malicious code in mini-css-extract-plugin-proxima-forever-altair npm...

EUVD-2025-111132

Malicious code in mini-css-extract-plugin-npm-lint-lacerta npm...

EUVD-2025-111129

Malicious code in mini-css-extract-plugin-passport-centaurus-eslint-plugin npm...

EUVD-2025-111120

Malicious code in mini-css-extract-plugin-semantic-release-rimraf-hermes npm...

EUVD-2025-112607

Malicious code in ignite-antares-terser-webpack-plugin-mini-css-extract-plugin npm...

EUVD-2025-112525

Malicious code in ini-duplex-mini-css-extract-plugin-stream npm...

Malicious code in atlas-mini-css-extract-plugin-equinox-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 404eaf3881cfa0b5b7b50fc02a65725729afb42926f6345a7dedfe0f35627d70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in ini-duplex-mini-css-extract-plugin-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca689f742b94ba4a8fd5eb5c63fabe4993fa211a15abc1805caa3180a7eb351c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in mysql-firebase-websockets-mini-css-extract-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 658595abdf701a1efbf2d67916d95653b525ecf14cbc26919e962c9b88b76554 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-111123

Malicious code in mini-css-extract-plugin-redis-tool-ignite npm...

EUVD-2025-115491

Malicious code in chakra-ui-gravity-mini-css-extract-plugin-chromedriver npm...

EUVD-2025-113801

Malicious code in event-deimos-mini-css-extract-plugin-mira npm...

EUVD-2025-123657

Malicious code in pipe-mini-css-extract-plugin-vuepress-phoebe npm...

MAL-2025-142595 Malicious code in fork-publish-node-config-mini-css-extract-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2f6e9a7562a333d4e73524c50d96a1a156c6d0d860a6af6a4cad3f0ea51e112 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147721 Malicious code in scorpius-vuetify-metalsmith-mini-css-extract-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2186526dff27c6c4fa856cfe4c9936a3d13ab0f924c3f55f611a9ca589374cf1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...