5740 matches found
EUVD-2025-112126
Malicious code in json-ursa-css-loader-dotenv npm...
EUVD-2025-112046
Malicious code in jupiter-xanadu-optimize-css-assets-webpack-plugin-cressida npm...
EUVD-2025-111864
Malicious code in lacerta-optimize-css-assets-webpack-plugin-unuk-prettier npm...
EUVD-2025-111833
Malicious code in leda-mini-css-extract-plugin-backend-radiant npm...
Malicious code in atlas-mini-css-extract-plugin-equinox-stream (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 404eaf3881cfa0b5b7b50fc02a65725729afb42926f6345a7dedfe0f35627d70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in auth-css-loader-node-sass-gacrux (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f99a2e6d84ab0f17f54374c0b9562b0a16562928b0e7327a3436d9e2b0320a31 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in css-loader-gatsby-oberon-got (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d8a19af4e44ee7bff5a71b4d40822481fb8ccc14538ae978842ec212c121d58 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in css-minimizer-webpack-plugin-comet-impulse-loop (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2036bd03a92e217ea6354ba65928a8ff78ecbf6c59fc278e254c0d1d3153fa76 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eslint-plugin-perseus-css-loader-eclipse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f0ddf1aabd198f85639e9d3b3af0ae998cbc891b75eba766e8f9d4bc57097d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fornax-bulma-css-minimizer-webpack-plugin-slides (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae0da98e288028234148488a2f636cdb4fc065991d201ef07a51cd9f0f2ae7f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gridsome-css-minimizer-webpack-plugin-graphql-cors (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae26c88c181d9c55babee3d7420ebd9761f1cc23f179a381d9b81d8f747c8c1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in helios-css-loader-kastra-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 633c687aa376abebf8cfe06e2dc3aaa0c30eb2065e0fdf8373b6e67332e7882b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in html-webpack-plugin-sedna-css-loader-nebula (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e51b8fdb4d679e44dce5f94d31b2b02d247d6d9cadee2a0d6ef9711492a2d56a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ini-duplex-mini-css-extract-plugin-stream (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca689f742b94ba4a8fd5eb5c63fabe4993fa211a15abc1805caa3180a7eb351c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in jekyll-transport-fusion-css-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90acc8ffa85bac80ebe5f7d7f7ff730194b5d208154fe0f059cf44abad400c98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in local-galaxy-css-loader-chariklo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62c5d995b2d7c1379c608222f6a930f1dd0abf83465e12d9acd14b9ec66aedfa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mini-css-extract-plugin-callisto-vulcan-apex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b4fefa2b8aac08eb3db27624e6a94ba26bdf920229211f6b3eeda2ce26bd6c4f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in miranda-css-minimizer-webpack-plugin-soap-ora (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a78c804487392c81ec4c5b2f22f56c86ca956fd102a26974d8adf7ade602ba8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mysql-firebase-websockets-mini-css-extract-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 658595abdf701a1efbf2d67916d95653b525ecf14cbc26919e962c9b88b76554 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nightwatch-css-loader-charon-gemini (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e44f89d3df24791b88771155d9b2f6a6e5560407e4703e03a79c06a90ca59d19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...