EUVD-2025-179456

Malicious code in css-minimizer-webpack-plugin-vuetify-ichnology-redshift npm...

EUVD-2025-179459

Malicious code in css-minimizer-webpack-plugin-phoebe-biogeochemistry-lint npm...

EUVD-2025-114772

Malicious code in css-minimizer-webpack-plugin-winston-jwt-phoebe npm...

MAL-2025-141331 Malicious code in css-minimizer-webpack-plugin-perseus-phoebe-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21f4c0c782d6c378089168b89d8b9dc2f864bbb057f8c45669d8132fe4c260f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-122956

Malicious code in query-despina-css-minimizer-webpack-plugin-juno npm...

MAL-2025-148275 Malicious code in start-lint-staged-antares-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65ca9dec5af3f6986b7abaf03d78477121b87d0e5875637fd40a490404dd5368 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-113087

Malicious code in gravity-got-xenos-css-minimizer-webpack-plugin npm...

MAL-2025-142838 Malicious code in gatsby-css-minimizer-webpack-plugin-kinetic-aldebaran (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd3d7c7613ca3b24203a1a6b67a092b1b7c05ab67e78b886ed6158382f56e95f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-113119

Malicious code in got-ursa-css-minimizer-webpack-plugin-redis npm...

EUVD-2025-114779

Malicious code in css-minimizer-webpack-plugin-nextjs-ignite-pipe npm...

Malicious code in query-despina-css-minimizer-webpack-plugin-juno (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc52c97c1d959c25dca26780f72a3b65b73de4400a1ee0029b9df1206469a3e7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-45561 Malicious code in pino-pretty-carpo-css-minimizer-webpack-plugin-mini-css-extract-plugin (npm)

The package pino-pretty-carpo-css-minimizer-webpack-plugin-mini-css-extract-plugin was found to contain malicious code...

Malicious code in koa-uglify-js-css-minimizer-webpack-plugin-tectonophysics (npm)

The package koa-uglify-js-css-minimizer-webpack-plugin-tectonophysics was found to contain malicious code...

MAL-2025-17796 Malicious code in css-minimizer-webpack-plugin-nightwatch-callback-rimraf (npm)

The package css-minimizer-webpack-plugin-nightwatch-callback-rimraf was found to contain malicious code...