EUVD-2025-114349

Malicious code in dotenv-safe-mini-css-extract-plugin-pm2-buffer npm...

EUVD-2025-112721

Malicious code in hugo-mini-css-extract-plugin-phoebe-chakra-ui npm...

EUVD-2025-111125

Malicious code in mini-css-extract-plugin-proxima-forever-altair npm...

EUVD-2025-116453

Malicious code in atlas-mini-css-extract-plugin-equinox-stream npm...

EUVD-2025-112607

Malicious code in ignite-antares-terser-webpack-plugin-mini-css-extract-plugin npm...

MAL-2025-143208 Malicious code in heka-mini-css-extract-plugin-xenos-prompts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b17a7f1db0e8cf65d171b6b053a9b54a88580fcb443ea927debda2adbfaa55a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-113208

Malicious code in gemini-mini-css-extract-plugin-style-loader-achernar npm...

EUVD-2025-111119

Malicious code in mini-css-extract-plugin-socketio-bellatrix-lint-staged npm...

EUVD-2025-111129

Malicious code in mini-css-extract-plugin-passport-centaurus-eslint-plugin npm...

EUVD-2025-111137

Malicious code in mini-css-extract-plugin-library-proxima-ultra npm...

EUVD-2025-111726

Malicious code in library-pulsar-mini-css-extract-plugin-init npm...

EUVD-2025-121823

Malicious code in spawn-mensa-nestjs-mini-css-extract-plugin npm...

EUVD-2025-123657

Malicious code in pipe-mini-css-extract-plugin-vuepress-phoebe npm...

EUVD-2025-111117

Malicious code in mini-css-extract-plugin-update-cassini-blaze npm...

EUVD-2025-112525

Malicious code in ini-duplex-mini-css-extract-plugin-stream npm...

EUVD-2025-114012

Malicious code in epimetheus-mini-css-extract-plugin-barnard-apollo npm...

EUVD-2025-124672

Malicious code in mysql-firebase-websockets-mini-css-extract-plugin npm...

Malicious code in ini-duplex-mini-css-extract-plugin-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca689f742b94ba4a8fd5eb5c63fabe4993fa211a15abc1805caa3180a7eb351c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in atlas-mini-css-extract-plugin-equinox-stream (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 404eaf3881cfa0b5b7b50fc02a65725729afb42926f6345a7dedfe0f35627d70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114105

Malicious code in eleventy-mini-css-extract-plugin-cordelia-middleware npm...