MAL-2025-141331 Malicious code in css-minimizer-webpack-plugin-perseus-phoebe-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21f4c0c782d6c378089168b89d8b9dc2f864bbb057f8c45669d8132fe4c260f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-146162 Malicious code in phoebe-metalsmith-css-minimizer-webpack-plugin-umbra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c7758742d6ce3f84c41f899059c9fa2f6d10ec4d81abe2446f4316493355a77 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in miranda-css-minimizer-webpack-plugin-soap-ora (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a78c804487392c81ec4c5b2f22f56c86ca956fd102a26974d8adf7ade602ba8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in jekyll-transport-fusion-css-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90acc8ffa85bac80ebe5f7d7f7ff730194b5d208154fe0f059cf44abad400c98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-124164

Malicious code in oberon-sedna-css-loader-stop npm...

EUVD-2025-114405

Malicious code in dotenv-cosmos-promise-css-minimizer-webpack-plugin npm...

EUVD-2025-123908

Malicious code in pavo-tethys-stop-css-minimizer-webpack-plugin npm...

Malicious code in thuban-css-minimizer-webpack-plugin-parcel-dione (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba20e4a94027f3181217bb6bdd701c4838a02c50cd8a2bd55e6fdbc9ae2f0a46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-121359

Malicious code in test-css-minimizer-webpack-plugin-betelgeuse-rollup-plugin npm...

EUVD-2025-112817

Malicious code in hercules-server-airbnb-css-loader npm...

EUVD-2025-124265

Malicious code in nova-css-minimizer-webpack-plugin-prettier-meteor npm...

EUVD-2025-122694

Malicious code in release-it-node-sass-browserify-css-minimizer-webpack-plugin npm...

EUVD-2025-111726

Malicious code in library-pulsar-mini-css-extract-plugin-init npm...

EUVD-2025-114780

Malicious code in css-minimizer-webpack-plugin-meissa-shelljs-tailwindcss npm...

EUVD-2025-121823

Malicious code in spawn-mensa-nestjs-mini-css-extract-plugin npm...

EUVD-2025-123657

Malicious code in pipe-mini-css-extract-plugin-vuepress-phoebe npm...

EUVD-2025-121574

Malicious code in subscription-css-minimizer-webpack-plugin-carpo-lynx npm...

EUVD-2025-114807

Malicious code in css-loader-flare-koa-react-bootstrap npm...

EUVD-2025-111630

Malicious code in local-css-loader-ursa-venus npm...

EUVD-2025-112525

Malicious code in ini-duplex-mini-css-extract-plugin-stream npm...