Malicious code in quark-sass-loader-tethys-css-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 116c1347633b8d82c9e598f6bbd05698b5712a0a16af782398747926b03a2c4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in quito-superagent-juno-css-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63a10782480dd1083312e2d21113d97e733a202a0f6478b6ae20c3eaac52cc6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in sedna-command-optimize-css-assets-webpack-plugin-eslint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 657c3f7f826ca07b971146b54b59d5bd56705c8d153915fedf99957885136a6f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-123104

Malicious code in publish-taurus-css-loader-mensa npm...

EUVD-2025-113726

Malicious code in express-mini-css-extract-plugin-procyon-acamar npm...

EUVD-2025-120998

Malicious code in umbra-optimize-css-assets-webpack-plugin-radiant-publish npm...

EUVD-2025-114793

Malicious code in css-loader-soap-elektra-andromeda npm...

EUVD-2025-116230

Malicious code in babel-rehype-mini-css-extract-plugin-aether npm...

EUVD-2025-124060

Malicious code in optimize-css-assets-webpack-plugin-global-titan-ganymede npm...

Malicious code in triton-scripts-cygnus-css-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2fc611d6b7568136f908c9acb21ec7354043b45aff46b45717181224ee13010 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in css-loader-spinner-hermes-hydra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8302d0741db7d221e02f8e9ed2a744e8586ed4f7241cb1249ff6f197772e806 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-113119

Malicious code in got-ursa-css-minimizer-webpack-plugin-redis npm...

EUVD-2025-111123

Malicious code in mini-css-extract-plugin-redis-tool-ignite npm...

EUVD-2025-121292

Malicious code in tethys-uglify-js-optimize-css-assets-webpack-plugin-enif npm...

EUVD-2025-123109

Malicious code in publish-shelljs-hexo-css-loader npm...

EUVD-2025-113021

Malicious code in grus-css-loader-ophiuchus-scripts npm...

EUVD-2025-115453

Malicious code in chalk-run-script-prompts-css-loader npm...

EUVD-2025-114779

Malicious code in css-minimizer-webpack-plugin-nextjs-ignite-pipe npm...

EUVD-2025-124435

Malicious code in nightwatch-shelljs-optimize-css-assets-webpack-plugin-meissa npm...

EUVD-2025-124326

Malicious code in nodemon-sedna-elektra-optimize-css-assets-webpack-plugin npm...